CVE-2026-27744 | SPIP tickets up to 4.3.2 code injection

Inserito da Angelo Barbosa | Feb 25, 2026 | CVE

A vulnerability was found in SPIP tickets up to 4.3.2. It has been rated as critical. This issue affects some unknown processing. This manipulation causes code injection.

This vulnerability is registered as CVE-2026-27744. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.

CVE-2026-27744 | SPIP tickets up to 4.3.2 code injection

Post correlati

CVE-2025-15277 | FontForge SGI File Parser heap-based overflow (ZDI-25-1186)

CVE-2025-48499 | Fujifilm DocuPrint CP225 w Internet Printing Protocol/Line Printer Daemon out-of-bounds write

CVE-2024-12652 | Intumit SmartRobots Conversational AI Platform up to 7.1.x Groovy Script code injection

CVE-2025-41715 | WAGO Device Sphere/Solution Builder missing authentication (VDE-2025-087)