Vulnerabilities > Moniwiki > Moniwiki
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-07-06 | CVE-2006-3399 | Cross-Site Scripting vulnerability in MoniWiki Cross-site scripting (XSS) vulnerability in wiki.php in MoniWiki before 1.1.2-20060702 allows remote attackers to inject arbitrary Javascript via the URL, which is reflected back in an error message, a variant of CVE-2004-1632. | 2.6 |
2004-12-31 | CVE-2004-1545 | Remote Server-Side Script Execution vulnerability in Moniwiki 1.0.8/1.0.9/1.0.9.1 UploadFile.php in MoniWiki 1.0.9.2 and earlier, when used with Apache mod_mime, does not properly handle files with two file extensions, such as .php.hwp, which allows remote attackers to upload and execute arbitrary code. | 5.0 |
2004-10-25 | CVE-2004-1632 | Cross-Site Scripting vulnerability in Moniwiki 1.0.8 Cross-site scripting (XSS) vulnerability in wiki.php in MoniWiki 1.0.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the arguments to wiki.php. network moniwiki | 4.3 |