CVE-2025-71248 | SPIP up to 4.4.8 cross site scripting

Inserito da Angelo Barbosa | Feb 19, 2026 | CVE

A vulnerability was found in SPIP up to 4.4.8. It has been rated as problematic. This impacts an unknown function. This manipulation causes cross site scripting.

This vulnerability is tracked as CVE-2025-71248. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is advised.

CVE-2025-71248 | SPIP up to 4.4.8 cross site scripting

Post correlati

CVE-2025-38015 | Linux Kernel prior 6.1.140/6.6.92/6.12.30/6.14.8 dmaengine idxd_alloc memory leak

CVE-2023-51702 | Apache Airflow up to 2.6.0 CNCF Kubernetes Provider log file

CVE-2025-12098 | Academy LMS Plugin up to 3.3.8 on WordPress Social Login enqueue_social_login_script information disclosure

CVE-2025-12868 | CyberTutor New Site Server client-side authentication