Vulnerabilities > Wikkawiki
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-02-24 | CVE-2006-7049 | Information Disclosure vulnerability in Wikkawiki Method Function The Method method in WikkaWiki (Wikka Wiki) before 1.1.6.2 calls the strstr and strrpos functions with the wrong argument order, which allows remote attackers to bypass intended access restrictions and access arbitrary PHP files. | 7.5 |
| 2005-12-15 | CVE-2005-4255 | Cross-Site Scripting vulnerability in WikkaWiki Cross-site scripting (XSS) vulnerability in TextSearch in WikkaWiki 1.1.6.0 allows remote attackers to inject arbitrary web script or HTML via a hex-encoded phrase parameter. network wikkawiki | 4.3 |