RSS   Vulnerabilities for 'Mozilowiki'   RSS

2009-02-13
 
CVE-2008-6131

 
 
Session fixation vulnerability in moziloWiki 1.0.1 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.

 
 
CVE-2008-6130

 
 
Cross-site scripting (XSS) vulnerability in index.php in moziloWiki 1.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) action and (2) page parameters.

 
 
CVE-2008-6129

 
 
Directory traversal vulnerability in print.php in moziloWiki 1.0.1 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter.

 

 >>> Vendor: Mozilo 3 Products
Mozilocms
Mozilowiki
Mozilo

Copyright 2024, cxsecurity.com

 

Back to Top