Vulnerabilities > Wikepage
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-04-25 | CVE-2008-1956 | Cross-Site Scripting vulnerability in Wikepage Opus 132007.2 Cross-site scripting (XSS) vulnerability in index.php in Wikepage Opus 13 2007.2 allows remote attackers to inject arbitrary web script or HTML via the wiki parameter. | 4.3 |
2008-04-18 | CVE-2008-1884 | Path Traversal vulnerability in Wikepage Opus 132007.2 Directory traversal vulnerability in index.php in Wikepage Opus 13 2007.2 allows remote attackers to read arbitrary files via directory traversal sequences in the wiki parameter, a different vector than CVE-2006-4418. | 5.0 |
2007-10-09 | CVE-2007-5295 | Code Injection vulnerability in Wikepage Opus 132007.2 Multiple cross-site scripting (XSS) vulnerabilities in index.php in (a) Wikepage Opus 13 2007.2 and (b) TipiWiki 2 allow remote attackers to inject arbitrary web script or HTML via the (1) PageContent and (2) PageName parameters. | 4.3 |
2006-08-28 | CVE-2006-4418 | Local File Include vulnerability in Wikepage 2006.2/2006.2A Directory traversal vulnerability in index.php for Wikepage 2006.2a Opus 10 allows remote attackers to include arbitrary local files via the lng parameter, as demonstrated by inserting PHP code into a log file. | 4.0 |