← Back to CVE List

CVE-2023-27372

Published: 2023-02-28T20:15Z
Last Modified: 2025-03-11T15:15Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions are 3.2.18, 4.0.10, 4.1.8, and 4.2.1. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt