4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
53.7%
A Secunia security advisory reports:
A vulnerability has been reported in FreeStyle Wiki and
FSWikiLite, which can be exploited by malicious people to
conduct script insertion attacks.
Input passed in uploaded attachments is not properly
sanitised before being used. This can be exploited to inject
arbitrary HTML and script code, which will be executed in a
user’s browser session in context of an affected site when
the malicious attachment is viewed.