Vulnerabilities > Pmwiki > Pmwiki > 2.2.15
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-02-05 | CVE-2010-4662 | Cross-site Scripting vulnerability in Pmwiki PmWiki before 2.2.21 has XSS. | 4.3 |
2011-12-22 | CVE-2011-4453 | Code Injection vulnerability in Pmwiki The PageListSort function in scripts/pagelist.php in PmWiki 2.x before 2.2.35 allows remote attackers to execute arbitrary code via PHP sequences in a crafted order parameter in a pagelist directive, leading to unintended use of the PHP create_function function. | 7.5 |
2010-05-12 | CVE-2010-1481 | Cross-Site Scripting vulnerability in Pmwiki 2.2.15 Cross-site scripting (XSS) vulnerability in the table feature in PmWiki 2.2.15 allows remote authenticated users to inject arbitrary web script or HTML via the width attribute. | 3.5 |