CVE-2024-53620

A cross-site scripting (XSS) vulnerability in the Article module of SPIP v4.3.3 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Title parameter.

We have discovered 7,315 live websites that are affected by CVE-2024-53620.

Test my site



Affected Software

Product  SPIP
Category Content Management System
Vulnerable Domains7,315 live websites (75.89% of SPIP install base)
Vulnerable Versions
  • from 0 before 4.3.3
Vulnerable Versions Count154 versions ( 96.86% of all versions)



Details

  • Published - Nov 26, 2024
  • Updated - Nov 26, 2024

CVE-2024-53620 usage by Country

United States512 websites


France5,430 websites
Switzerland308 websites
Belgium246 websites
Germany184 websites
Italy117 websites
Canada112 websites
Spain67 websites
European Union45 websites
GB45 websites

CVE-2024-53620 usage by TLD

.fr2,411 websites
.com1,888 websites
.org1,242 websites
.net491 websites
.be294 websites
.eu185 websites
.info116 websites
.it96 websites
.ch84 websites
.de47 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2024-53620

Top websites that are affected by CVE-2024-53620. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*****************.fr France**,***
******************.fr France**,***
**********.com France**,***
****.org France**,***
*****.fr France**,***
******.net France**,***
********.fr United States**,***
************.***********.****.fr France**,***
******************.fr France**,***
***********.org United States**,***
See full domain list

FAQ

A total of 7,315 websites have been identified as vulnerable to CVE-2024-53620, discovered through global website indexing conducted by WebTechSurvey.
SPIP is susceptible to CVE-2024-53620 vulnerability.
SPIP versions before 4.3.3 are vulnerable to CVE-2024-53620.
Version 4.3.3 of SPIP addresses the CVE-2024-53620 security vulnerability.