Lucene search

CVE-2013-5586

🗓️ 25 Sep 2013 14:04:55Reported by mitreType

cve🔗 web.nvd.nist.gov👁 86 Views🌐 WEB

Cross-site scripting vulnerability in WikkaWiki before 1.3.4-p

Reporter	Title	Published	Views	Family All 9
0day.today	WikkaWiki 1.3.4 Cross Site Scripting Vulnerability	13 Sep 201300:00	–	zdt
Packet Storm	WikkaWiki 1.3.4 Cross Site Scripting	12 Sep 201300:00	–	packetstorm
Prion	Cross site scripting	25 Sep 201314:55	–	prion
NVD	CVE-2013-5586	25 Sep 201314:55	–	nvd
securityvulns	Cross-Site Scripting (XSS) in WikkaWiki	3 Oct 201300:00	–	securityvulns
securityvulns	Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)	3 Oct 201300:00	–	securityvulns
Cvelist	CVE-2013-5586	25 Sep 201314:00	–	cvelist
OpenVAS	WikkaWiki <= 1.3.4 XSS Vulnerability - Active Check	16 Sep 201300:00	–	openvas
htbridge	Cross-Site Scripting (XSS) in WikkaWiki	21 Aug 201300:00	–	htbridge

Nvd

Node

wikkawiki wikkawikiRange≤1.3.4

wikkawiki wikkawikiMatch1.0.0

wikkawiki wikkawikiMatch1.0.1

wikkawiki wikkawikiMatch1.0.2

wikkawiki wikkawikiMatch1.0.3

wikkawiki wikkawikiMatch1.0.4

wikkawiki wikkawikiMatch1.0.5

wikkawiki wikkawikiMatch1.0.6

wikkawiki wikkawikiMatch1.1.0

wikkawiki wikkawikiMatch1.1.2

wikkawiki wikkawikiMatch1.1.3

wikkawiki wikkawikiMatch1.1.3.1

wikkawiki wikkawikiMatch1.1.3.2

wikkawiki wikkawikiMatch1.1.3.3

wikkawiki wikkawikiMatch1.1.3.4

wikkawiki wikkawikiMatch1.1.3.5

wikkawiki wikkawikiMatch1.1.3.6

wikkawiki wikkawikiMatch1.1.3.7

wikkawiki wikkawikiMatch1.1.3.8

wikkawiki wikkawikiMatch1.1.3.9

wikkawiki wikkawikiMatch1.1.4.0

wikkawiki wikkawikiMatch1.1.5.0

wikkawiki wikkawikiMatch1.1.5.1

wikkawiki wikkawikiMatch1.1.5.2

wikkawiki wikkawikiMatch1.1.5.3

wikkawiki wikkawikiMatch1.1.5.4

wikkawiki wikkawikiMatch1.1.6.0

wikkawiki wikkawikiMatch1.1.6.1

wikkawiki wikkawikiMatch1.1.6.2

wikkawiki wikkawikiMatch1.1.6.3

wikkawiki wikkawikiMatch1.1.6.4

wikkawiki wikkawikiMatch1.1.6.5

wikkawiki wikkawikiMatch1.1.6.6

wikkawiki wikkawikiMatch1.1.6.7

wikkawiki wikkawikiMatch1.3.1

wikkawiki wikkawikiMatch1.3.2

wikkawiki wikkawikiMatch1.3.3

Source	Link
wush	www.wush.net/trac/wikka/ticket/1152
wush	www.wush.net/trac/wikka/changeset/1900
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/87013
archives	www.archives.neohapsis.com/archives/bugtraq/2013-09/0048.html
wush	www.wush.net/trac/wikka/changeset/1896
secunia	www.secunia.com/advisories/54790
htbridge	www.htbridge.com/advisory/HTB23170
docs	www.docs.wikkawiki.org/WhatsNew134
securityfocus	www.securityfocus.com/bid/62325
packetstormsecurity	www.packetstormsecurity.com/files/123196

Parameter	Position	Path	Description	CWE
wakka	query param	/sql/	Cross-Site Scripting (XSS) vulnerability allowing injection via wakka parameter.	CWE-79

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

25 Sep 2013 14:55Current

5.7Medium risk

Vulners AI Score5.7

CVSS24.3

EPSS0.00335

CWE-79