CVE-2025-71249 | SPIP up to 4.4.8 echappe_anti_xss cross site scripting

Inserito da Angelo Barbosa | Feb 19, 2026 | CVE

A vulnerability was found in SPIP up to 4.4.8. It has been declared as problematic. This affects the function echappe_anti_xss. The manipulation results in cross site scripting.

This vulnerability is identified as CVE-2025-71249. The attack can be executed remotely. There is not any exploit available.

It is recommended to upgrade the affected component.

CVE-2025-71249 | SPIP up to 4.4.8 echappe_anti_xss cross site scripting

Post correlati

CVE-2024-3193 | MailCleaner up to 2023.03.14 Admin Endpoints os command injection (MZ-24-01)

CVE-2024-38641 | QNAP QTS/QuTS hero prior 5.1.8.2823 Build 20240712 os command injection (qsa-24-33)

CVE-2024-47833 | Avaiga taipy up to 3.x cookie httponly flag (GHSA-r3jq-4r5c-j9hp)

CVE-2025-4407 | ABB Lite Panel Pro up to 1.0.1 session expiration