5 matches found
Cross-Site Scripting (XSS) in WikkaWiki
Advisory ID: HTB23170 Product: WikkaWiki Vendor: Wikka Development Team Vulnerable Versions: 1.3.4 and probably prior Tested Version: 1.3.4 Vendor Notification: August 21, 2013 Vendor Patch: August 31, 2013 Public Disclosure: September 11, 2013 Vulnerability Type: Cross-Site Scripting CWE-79 CVE...
CVE-2013-5586
Cross-site scripting XSS vulnerability in wikka.php in WikkaWiki before 1.3.4-p1 allows remote attackers to inject arbitrary web script or HTML via the wakka parameter to sql/...
CVE-2013-5586
CVE-2013-5586 affects WikkaWiki (versions up to 1.3.4, patched as 1.3.4-p1). The issue is a Cross-Site Scripting (XSS) vulnerability in the wikka.php handler, caused by insufficient sanitisation of the GET parameter "wakka" passed to "/sql/". This allows remote attackers to inject arbitrary scrip...
WikkaWiki 1.3.4 Cross Site Scripting Vulnerability
WikkaWiki version 1.3.4 suffers from a cross site scripting vulnerability. Vendor: Wikka Development Team Vulnerable Versions: 1.3.4 and probably prior Tested Version: 1.3.4 Vendor Notification: August 21, 2013 Vendor Patch: August 31, 2013 Public Disclosure: September 11, 2013 Vulnerability Type...
WikkaWiki 1.3.4 Cross Site Scripting
Advisory ID: HTB23170 Product: WikkaWiki Vendor: Wikka Development Team Vulnerable Versions: 1.3.4 and probably prior Tested Version: 1.3.4 Vendor Notification: August 21, 2013 Vendor Patch: August 31, 2013 Public Disclosure: September 11, 2013 Vulnerability Type: Cross-Site Scripting CWE-79 CVE...