Lucene search

CVE-2011-4450

🗓️ 05 Sep 2012 20:01:55Reported by mitreType

cve🔗 web.nvd.nist.gov👁 216 Views🌐 WEB

CVE-2011-4450 Directory traversal vulnerability in WikkaWiki 1.3.1 and 1.3.

Reporter	Title	Published	Views	Family All 12
NVD	CVE-2011-4450	5 Sep 201220:55	–	nvd
Prion	Directory traversal	5 Sep 201220:55	–	prion
Cvelist	CVE-2011-4450	5 Sep 201220:00	–	cvelist
OpenVAS	WikkaWiki Multiple Security Vulnerabilities	1 Dec 201100:00	–	openvas
OpenVAS	WikkaWiki Multiple Security Vulnerabilities	1 Dec 201100:00	–	openvas
0day.today	WikkaWiki <= 1.3.2 Multiple Security Vulnerabilities	30 Nov 201100:00	–	zdt
seebug.org	WikkaWiki <= 1.3.2 - Multiple Security Vulnerabilities	1 Jul 201400:00	–	seebug
seebug.org	WikkaWiki <= 1.3.2 Multiple Security Vulnerabilities	1 Dec 201100:00	–	seebug
Exploit DB	WikkaWiki 1.3.2 - Multiple Vulnerabilities	30 Nov 201100:00	–	exploitdb
securityvulns	WikkaWiki <= 1.3.2 Multiple Security Vulnerabilities	4 Dec 201100:00	–	securityvulns

Nvd

Node

wikkawiki wikkawikiMatch1.3.1

wikkawiki wikkawikiMatch1.3.2

Source	Link
wush	www.wush.net/trac/wikka/ticket/1097
wush	www.wush.net/trac/wikka/changeset/1828

Parameter	Position	Path	Description	CWE
file	query param	/handlers/files.xml/files.xml.php	Directory traversal vulnerability allowing arbitrary file download or deletion.	CWE-22
action	query param	/handlers/files.xml/files.xml.php	Directory traversal vulnerability allowing arbitrary file download or deletion.	CWE-22
file	binary	/wikka/test	Unrestricted file upload due to insufficient input sanitization.	CWE-434

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

05 Sep 2012 20:55Current

6.6Medium risk

Vulners AI Score6.6

CVSS26.4

EPSS0.0044

CWE-22