CVE-2013-4557

SPIP < 3.0.12 - Remote Code Execution via Security Screen Connect Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-4557. PoCs published by Arnaud Pachot, Frederic Cikala, Davy Douhine, Valentin Lobstein, including Metasploit module exploits/multi/http/spip_connect_exec.

AI-analyzed exploit summary This Metasploit module exploits a PHP code injection vulnerability in SPIP via the 'connect' parameter, allowing unauthenticated RCE. It supports multiple platforms and payload types, with version checks for targeted exploitation.

Description

The Security Screen (_core_/securite/ecran_securite.php) before 1.1.8 for SPIP, as used in SPIP 3.0.x before 3.0.12, allows remote attackers to execute arbitrary PHP via the connect parameter.

Exploits (1)

metasploit WORKING POC EXCELLENT
by Arnaud Pachot, Frederic Cikala, Davy Douhine, Valentin Lobstein · rubypocphp
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/spip_connect_exec.rb

This Metasploit module exploits a PHP code injection vulnerability in SPIP via the 'connect' parameter, allowing unauthenticated RCE. It supports multiple platforms and payload types, with version checks for targeted exploitation.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: SPIP < 2.0.21, < 2.1.16, < 3.0.3
No auth needed
Prerequisites: Network access to SPIP instance · PHP execution environment
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2013/dsa-2794
Various Sources x_refsource_confirm
http://www.spip.net/fr_article5646.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1029317
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2013/11/10/4
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/55551
Various Sources x_refsource_confirm
http://www.spip.net/fr_article5648.html

Scores

EPSS 0.2529
EPSS Percentile 97.7%

Details

CWE
CWE-94
Status published
Products (12)
spip/spip 3.0.0
spip/spip 3.0.1
spip/spip 3.0.2
spip/spip 3.0.3
spip/spip 3.0.4
spip/spip 3.0.5
spip/spip 3.0.6
spip/spip 3.0.7
spip/spip 3.0.8
spip/spip 3.0.9
... and 2 more
Published Nov 18, 2013
Tracked Since Feb 18, 2026