Easy-Script Wysi Wiki Wyg vulnerabilities
3 known vulnerabilities affecting easy-script/wysi_wiki_wyg.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2008-5322P4HIGHCVSS 7.8PoCv1.02008-12-03
CVE-2008-5322 [HIGH] CWE-200 CVE-2008-5322: Wysi Wiki Wyg 1.0 allows remote attackers to obtain system information via an invalid categup parame
Wysi Wiki Wyg 1.0 allows remote attackers to obtain system information via an invalid categup parameter to index.php, which calls the phpinfo function.
nvd
CVE-2008-3205P4MEDIUMCVSS 5.0PoCv1.02008-07-17
CVE-2008-3205 [MEDIUM] CWE-22 CVE-2008-3205: Directory traversal vulnerability in index.php in Easy-Script Wysi Wiki Wyg 1.0 allows remote attack
Directory traversal vulnerability in index.php in Easy-Script Wysi Wiki Wyg 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the c parameter.
nvd
CVE-2008-5323P4MEDIUMCVSS 4.3PoCv1.02008-12-03
CVE-2008-5323 [MEDIUM] CWE-79 CVE-2008-5323: Cross-site scripting (XSS) vulnerability in index.php in Wysi Wiki Wyg 1.0 allows remote attackers t
Cross-site scripting (XSS) vulnerability in index.php in Wysi Wiki Wyg 1.0 allows remote attackers to inject arbitrary web script or HTML via the s parameter.
nvd