Vendor

SPIP

3 briefs RSS

SPIP Security Policy Bypass Vulnerability

A vulnerability in SPIP versions prior to 4.4.15 allows an attacker to bypass the security policy, potentially leading to unauthorized actions.

SPIP vulnerability security-bypass web-application

2r 1t 4w ago

high advisory

SPIP RCE Vulnerability in Nginx Configurations (CVE-2026-8430)

2 rules 1 TTP 1 CVE

SPIP versions prior to 4.4.14 contain a remote code execution vulnerability exploitable in certain Nginx configurations, allowing attackers to execute arbitrary code within the web server's context.

SPIP +1 vulnerability rce webserver

2r 1t 1c May 12, 2026

critical threat

CVE-2026-8429: SPIP Remote Code Execution Vulnerability

2 rules 1 TTP 1 CVE

SPIP versions prior to 4.4.14 contain a remote code execution vulnerability (CVE-2026-8429) in the private space, allowing attackers to execute arbitrary code in the context of the web server, bypassing SPIP security screen protections.

SPIP cve-2026-8429 rce

2r 1t 1c May 12, 2026