Moniwiki » Moniwiki : Security Vulnerabilities, CVEs,

CVE-2006-3399

Cross-site scripting (XSS) vulnerability in wiki.php in MoniWiki before 1.1.2-20060702 allows remote attackers to inject arbitrary Javascript via the URL, which is reflected back in an error message, a variant of CVE-2004-1632.
Max CVSS
2.6
EPSS Score
0.62%
Published
2006-07-06
Updated
2018-10-18

CVE-2004-1632

Cross-site scripting (XSS) vulnerability in wiki.php in MoniWiki 1.0.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the arguments to wiki.php.
Max CVSS
4.3
EPSS Score
0.35%
Published
2004-10-25
Updated
2017-07-11

CVE-2004-1545

UploadFile.php in MoniWiki 1.0.9.2 and earlier, when used with Apache mod_mime, does not properly handle files with two file extensions, such as .php.hwp, which allows remote attackers to upload and execute arbitrary code.
Max CVSS
5.0
EPSS Score
4.16%
Published
2004-12-31
Updated
2017-07-11
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close