A vulnerability was found in SPIP referer_spam up to 1.2.x. It has been declared as critical. This vulnerability affects the function
referer_spam_ajouter/referer_spam_supprimer. The manipulation of the argument url results in sql injection.
This vulnerability is cataloged as CVE-2026-27743. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
