CVE-2026-26345 | SPIP up to 4.4.7 echapper_html_suspect cross site scripting

A vulnerability was found in SPIP up to 4.4.7. It has been declared as problematic. Affected by this vulnerability is the function echapper_html_suspect. Such manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2026-26345. It is possible to launch the attack remotely. No exploit is available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More