CVE-2026-33549
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
6.7 / 10
Vector String
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L
Vulnerability Description
SPIP 4.4.10 through 4.4.12 before 4.4.13 allows unintended privilege assignment (of administrator privileges) during the editing of an author data structure because of STATUT mishandling.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-688
Source
NVD
Vendor
SPIP
Product
SPIP
Discussion (0)
Add Comment
No comments yet. Be the first!