RSS   Podatności dla 'Moniwiki'   RSS

2006-07-06
 
CVE-2006-3399

CWE-Other
 

 
Cross-site scripting (XSS) vulnerability in wiki.php in MoniWiki before 1.1.2-20060702 allows remote attackers to inject arbitrary Javascript via the URL, which is reflected back in an error message, a variant of CVE-2004-1632.

 
2004-10-25
 
CVE-2004-1632

 

 
Cross-site scripting (XSS) vulnerability in wiki.php in MoniWiki 1.0.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the arguments to wiki.php.

 
2004-12-31
 
CVE-2004-1545

 

 
UploadFile.php in MoniWiki 1.0.9.2 and earlier, when used with Apache mod_mime, does not properly handle files with two file extensions, such as .php.hwp, which allows remote attackers to upload and execute arbitrary code.

 


Copyright 2024, cxsecurity.com

 

Back to Top