Vulnerabilities > Moniwiki > Moniwiki > 1.0.8
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-12-31 | CVE-2004-1545 | Remote Server-Side Script Execution vulnerability in Moniwiki 1.0.8/1.0.9/1.0.9.1 UploadFile.php in MoniWiki 1.0.9.2 and earlier, when used with Apache mod_mime, does not properly handle files with two file extensions, such as .php.hwp, which allows remote attackers to upload and execute arbitrary code. | 5.0 |
2004-10-25 | CVE-2004-1632 | Cross-Site Scripting vulnerability in Moniwiki 1.0.8 Cross-site scripting (XSS) vulnerability in wiki.php in MoniWiki 1.0.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the arguments to wiki.php. network moniwiki | 4.3 |