{"uuid": "2e26f397-9e5a-4b9c-97de-8ee724ec4bdc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27372", "type": "seen", "source": "https://t.me/cibsecurity/59155", "content": "\u203c CVE-2023-27372 \u203c\n\nSPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions are 3.2.18, 4.0.10, 4.1.8, and 4.2.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-28T22:32:44.000000Z"}