Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2019-16393: spip

SPIP before 3.1.11 and 3.2 before 3.2.5 mishandles redirect URLs in ecrire/inc/headers.php with a %0D, %0A, or %20 character.

CVE
Open in Source
#php

@ -55,6 +55,10 @@ function redirige_par_entete($url, $equiv = '’, $status = 302) {

// ne pas laisser passer n'importe quoi dans l'url

$url = str_replace(array('<', '"'), array('&lt;', '&quot;'), $url);

$url = str_replace(array("\r", "\n", ' '), array('%0D', '%0A', '%20'), $url);

while (strpos($url, '%0A') !== false) {

    $url = str_replace('%0A', '', $url);

}

// interdire les url inline avec des pseudo-protocoles :

if (

    (preg_match(",data:,i", $url) and preg_match("/base64\s*,/i", $url))

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE