Lucene search

Wikmd Security Vulnerabilities

cve

CVE-2022-36080

Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, an attacker could capture user's session cookies or execute malicious Javascript when a victim edits a markdown file. Version 1.7.1 fixes this...

6.1CVSS

6.3AI Score

0.001EPSS

2022-09-07 09:15 PM

cve

CVE-2022-36081

Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, Wikmd is vulnerable to path traversal when accessing /list/<path:folderpath> and discloses lists of files located on the server including sensitive data. Version 1.7.1 fixes this...

7.5CVSS

7.5AI Score

0.002EPSS

2022-09-07 09:15 PM