CVE-2026-48832 PUBLISHED

Assigner: mitre
Reserved: 24.05.2026 Published: 24.05.2026 Updated: 24.05.2026

action/cookie.php in ecrire in SPIP before 4.4.15 is prone to an open redirect vulnerability.

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
CVSS Score: 3.5

Product Status

Vendor SPIP
Product SPIP
Versions Default: unaffected
  • affected from 0 to 4.4.15 (excl.)

References

Problem Types

  • CWE-601 URL Redirection to Untrusted Site ('Open Redirect') CWE