Debian Linux Security Advisory 4532-1 - It was discovered that SPIP, a website engine for publishing, would allow unauthenticated users to modify published content and write to the database, perform cross-site request forgeries, and enumerate registered users.
91fcccc1e00b0774df0025f5b0586e72edbb0b614c9ea84e4d7f9b4d49c5d5f6