Lucene search

PRIOn knowledge basePRION:CVE-2013-5586

HistorySep 25, 2013 - 2:55 p.m.

Cross site scripting

2013-09-2514:55:00

PRIOn knowledge base

www.prio-n.com

6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

65.3%

JSON

Cross-site scripting (XSS) vulnerability in wikka.php in WikkaWiki before 1.3.4-p1 allows remote attackers to inject arbitrary web script or HTML via the wakka parameter to sql/.

CPENameOperatorVersion
wikkawikieq1.1.5.0
wikkawikieq1.1.3.3
wikkawikieq1.0.4
wikkawikieq1.1.5.2
wikkawikieq1.1.3.6
wikkawikieq1.0.6
wikkawikieq1.1.6.4
wikkawikieq1.1.3.5
wikkawikieq1.0.1
wikkawikieq1.1.2

Name	Operator	Version
wikkawiki	eq	1.1.5.0
wikkawiki	eq	1.1.3.3
wikkawiki	eq	1.0.4
wikkawiki	eq	1.1.5.2
wikkawiki	eq	1.1.3.6
wikkawiki	eq	1.0.6
wikkawiki	eq	1.1.6.4
wikkawiki	eq	1.1.3.5
wikkawiki	eq	1.0.1
wikkawiki	eq	1.1.2

Rows per page:

1-10 of 371

References

archives.neohapsis.com/archives/bugtraq/2013-09/0048.html

docs.wikkawiki.org/WhatsNew134

osvdb.org/97183

packetstormsecurity.com/files/123196

seclists.org/bugtraq/2013/Sep/47

secunia.com/advisories/54790

www.securityfocus.com/bid/62325

exchange.xforce.ibmcloud.com/vulnerabilities/87013

wush.net/trac/wikka/changeset/1896

wush.net/trac/wikka/changeset/1900

wush.net/trac/wikka/ticket/1152

wush.net/trac/wikka/ticket/1153

www.htbridge.com/advisory/HTB23170

6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

65.3%

JSON

Related for PRION:CVE-2013-5586