CVE-2025-71243 PoC — SPIP Saisies Plugin < 5.11.1 Remote Code Execution

Source

https://github.com/Chocapikk/CVE-2025-71243

Associated Vulnerability

Title:SPIP Saisies Plugin < 5.11.1 Remote Code Execution (CVE-2025-71243)
Description:The 'Saisies pour formulaire' (Saisies) plugin for SPIP versions 5.4.0 through 5.11.0 contains a critical Remote Code Execution (RCE) vulnerability. An attacker can exploit this vulnerability to execute arbitrary code on the server. Users should immediately update to version 5.11.1 or later.

Description

CVE-2025-71243 - SPIP Saisies Plugin RCE (Unauthenticated PHP Code Injection)

File Snapshot

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →