David Barrett Qwikiwiki vulnerabilities
4 known vulnerabilities affecting david_barrett/qwikiwiki.
Total CVEs
4
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2005-0283P4MEDIUMCVSS 5.0PoCv1.4.12005-01-04
CVE-2005-0283 [MEDIUM] CVE-2005-0283: Directory traversal vulnerability in index.php in QwikiWiki allows remote attackers to read arbitrar
Directory traversal vulnerability in index.php in QwikiWiki allows remote attackers to read arbitrary files via a .. (dot dot) and a %00 at the end of the filename in the page parameter.
nvd
CVE-2006-1196P4MEDIUMCVSS 4.3PoCv1.4v1.5+1 more2006-03-13
CVE-2006-1196 [MEDIUM] CVE-2006-1196: Multiple cross-site scripting (XSS) vulnerabilities in QwikiWiki 1.5 allow remote attackers to injec
Multiple cross-site scripting (XSS) vulnerabilities in QwikiWiki 1.5 allow remote attackers to inject arbitrary web script or HTML via the (1) from and (2) help parameters to (a) index.php; (3) action, (4) page, (5) debug, (6) help, (7) username, or (8) password parameters to (b) login.php; the (7) help parameter to (c) pageindex.php; or (8) help parameter to
nvd
CVE-2006-0983P4MEDIUMCVSS 4.3PoCv1.42006-03-03
CVE-2006-0983 [MEDIUM] CVE-2006-0983: Cross-site scripting (XSS) vulnerability in index.php in QwikiWiki 1.4 allows remote attackers to in
Cross-site scripting (XSS) vulnerability in index.php in QwikiWiki 1.4 allows remote attackers to inject arbitrary web script or HTML via the page parameter.
nvd
CVE-2006-0699P4MEDIUMCVSS 4.3PoCv1.0v1.2+6 more2006-02-15
CVE-2006-0699 [MEDIUM] CVE-2006-0699: Cross-site scripting (XSS) vulnerability in search.php in QWikiWiki 1.5, and possibly 1.5.1 and othe
Cross-site scripting (XSS) vulnerability in search.php in QWikiWiki 1.5, and possibly 1.5.1 and other versions, allows remote attackers to inject arbitrary web script or HTML via the query parameter.
nvd