Home

Description

SPIP before 4.4.5 and 4.3.9 allows an Open Redirect via the login form when used in AJAX mode. An attacker can craft a malicious URL that, when visited by a victim, redirects them to an arbitrary external site after login. This vulnerability only affects sites where the login page has been overridden to function in AJAX mode. It is not mitigated by the SPIP security screen.

PUBLISHED Reserved 2026-02-19 | Published 2026-02-19 | Updated 2026-02-19 | Assigner VulnCheck




MEDIUM: 5.1CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

MEDIUM: 6.1CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Problem types

URL Redirection to Untrusted Site ('Open Redirect')

Product status

Default status
unaffected

4.3.0 (semver) before 4.3.9
affected

4.4.0 (semver) before 4.4.5
affected

Credits

SPIP security team finder

References

blog.spip.net/...-jour-de-securite-sortie-de-SPIP-4-4-5.html vendor-advisory patch

git.spip.net/spip/spip product

www.vulncheck.com/...ories/spip-open-redirect-via-login-form (VulnCheck Advisory: SPIP < 4.4.5 Open Redirect via Login Form) third-party-advisory

cve.org (CVE-2025-71244)

nvd.nist.gov (CVE-2025-71244)

Download JSON