Vulnerabilities > Twiki > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-01 | CVE-2005-3056 | Injection vulnerability in Twiki 200409023 TWiki allows arbitrary shell command execution via the Include function | 7.5 |
| 2006-07-27 | CVE-2006-3819 | Remote Command Execution vulnerability in TWiki Configure Script TYPEOF Parameter Eval injection vulnerability in the configure script in TWiki 4.0.0 through 4.0.4 allows remote attackers to execute arbitrary Perl code via an HTTP POST request containing a parameter name starting with "TYPEOF". | 7.5 |
| 2006-03-26 | CVE-2006-1386 | Remote Information Disclosure vulnerability in Twiki 4.0/4.0.1 The (1) rdiff and (2) preview scripts in TWiki 4.0 and 4.0.1 ignore access control settings, which allows remote attackers to read restricted areas and access restricted content in TWiki topics. | 7.5 |
| 2005-09-16 | CVE-2005-2877 | Remote Arbitrary Command Execution vulnerability in TWiki TWikiUsers The history (revision control) function in TWiki 02-Sep-2004 and earlier allows remote attackers to execute arbitrary code via shell metacharacters, as demonstrated via the rev parameter to TWikiUsers. | 7.5 |
| 2005-02-23 | CVE-2005-0516 | Remote Security vulnerability in Imagegalleryplugin The ImageGalleryPlugin (ImageGalleryPlugin.pm) in Twiki allows remote attackers to execute arbitrary commands via certain commands that generate thumbnails. | 7.5 |