Primary

Context

SPIP Saisies Plugin Remote Code Execution Vulnerability

Vulnerability

A critical remote code execution vulnerability has been identified in the 'Saisies pour formulaire' plugin for SPIP, affecting versions 5.4.0 prior to 5.11.0. This vulnerability allows attackers to execute arbitrary code on the server. Users are advised to update to version 5.11.1 or later immediately.

Impact

Exploitation of this vulnerability allows for remote code execution on the server where the vulnerable SPIP Saisies plugin is installed.

Remediation

Users should update the Saisies plugin to version 5.11.1 or later. Instructions for updating the plugin are available on the SPIP Blog.

Added: Feb 19, 2026, 6:33 PM

Updated: Feb 19, 2026, 6:33 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

7.0

remediation

0.0

relevance

3.2

threat

1.7

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

7.0

remediation

0.0

relevance

3.2

threat

1.7

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SPIP Saisies Plugin Remote Code Execution Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating