19 matches found
EUVD-2022-38834
Malicious code in bioql PyPI...
EUVD-2022-38835
Malicious code in bioql PyPI...
CVE-2022-36080
Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, an attacker could capture user's session cookies or execute malicious Javascript when a victim edits a markdown file. Version 1.7.1 fixes this issue...
CVE-2022-36081
Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, Wikmd is vulnerable to path traversal when accessing /list/ and discloses lists of files located on the server including sensitive data. Version 1.7.1 fixes this issue...
CVE-2022-36081
Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, Wikmd is vulnerable to path traversal when accessing /list/ and discloses lists of files located on the server including sensitive data. Version 1.7.1 fixes this issue...
CVE-2022-36080
Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, an attacker could capture user's session cookies or execute malicious Javascript when a victim edits a markdown file. Version 1.7.1 fixes this issue...
Path traversal
Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, Wikmd is vulnerable to path traversal when accessing /list/ and discloses lists of files located on the server including sensitive data. Version 1.7.1 fixes this issue...
Remote file inclusion
Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, an attacker could capture user's session cookies or execute malicious Javascript when a victim edits a markdown file. Version 1.7.1 fixes this issue...
CVE-2022-36080 Wikmd Cross-site Scripting vulnerability
Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, an attacker could capture user's session cookies or execute malicious Javascript when a victim edits a markdown file. Version 1.7.1 fixes this issue...
CVE-2022-36080 Wikmd Cross-site Scripting vulnerability
Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, an attacker could capture user's session cookies or execute malicious Javascript when a victim edits a markdown file. Version 1.7.1 fixes this issue...
CVE-2022-36080
Affected software : Wikmd (file-based wiki using Markdown). Vulnerability : Cross-site scripting in versions prior to 1.7.1, enabling an attacker to capture a user’s session cookies or run malicious JavaScript when a victim edits a Markdown file. Root cause/vector : XSS that occurs during the edi...
CVE-2022-36080 Wikmd Cross-site Scripting vulnerability
Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, an attacker could capture user's session cookies or execute malicious Javascript when a victim edits a markdown file. Version 1.7.1 fixes this issue...
CVE-2022-36081 Wikmd vulnerable to Local File Enumeration when accessing /list
Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, Wikmd is vulnerable to path traversal when accessing /list/ and discloses lists of files located on the server including sensitive data. Version 1.7.1 fixes this issue...
CVE-2022-36081
Wikmd (a Markdown-based wiki) is affected by CVE-2022-36081 due to a path traversal flaw when accessing /list/path:folderpath , exposing server file lists including sensitive data. The issue affects versions prior to 1.7.1; version 1.7.1 includes the fix. Remediation: upgrade Wikmd to 1.7.1 or la...
CVE-2022-36081 Wikmd vulnerable to Local File Enumeration when accessing /list
Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, Wikmd is vulnerable to path traversal when accessing /list/ and discloses lists of files located on the server including sensitive data. Version 1.7.1 fixes this issue...
CVE-2022-36081 Wikmd vulnerable to Local File Enumeration when accessing /list
Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, Wikmd is vulnerable to path traversal when accessing /list/ and discloses lists of files located on the server including sensitive data. Version 1.7.1 fixes this issue...
wikmd 路径遍历漏洞
wikmd is a file-based wiki for individual linbreux developers. A security vulnerability exists in versions of wikmd prior to 1.7.1, which stems from vulnerability to path traversal when accessing /list/ and can leak the list of files on the server...
wikmd 跨站脚本漏洞
wikmd is a file-based wiki for individual developers of linbreux. A cross-site scripting vulnerability exists in versions of wikmd prior to 1.7.1, which originates from an attacker being able to capture a user's session cookie or execute malicious Javascript while the victim is editing a markdown...
PT-2022-23169 · Wikmd · Wikmd
Name of the Vulnerable Software and Affected Versions: Wikmd versions prior to 1.7.1 Description: The issue allows an attacker to capture a user's session cookies or execute malicious Javascript when a victim edits a markdown file. Recommendations: For versions prior to 1.7.1, update to version...