Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

seebug.org
seebug.orgadded 2010/01/30 12:0 a.m.20 views

DocuWiki version 2009-12-25 suffers from directory traversal listing and modification vulnerabilitie

No description provided by source. Reported: 13-01-2010 Patched: 13-01-2010 Released: 14-01-2010 Vulnerable version : http://www.splitbrain.org/media/projects/dokuwiki/dokuwiki-2009-12-25.tgz Patched version: http://www.splitbrain.org/media/projects/dokuwiki/dokuwiki-2009-12-25b.tgz Author:...

7.1AI score
Exploits0
NVD
NVDadded 2007/07/21 12:30 a.m.15 views

CVE-2007-3930

Interpretation conflict between Microsoft Internet Explorer and DocuWiki before 2007-06-26b allows remote attackers to inject arbitrary JavaScript and conduct cross-site scripting XSS attacks when spellchecking UTF-8 encoded messages via the spellutf8test function in lib/exe/spellcheck.php, which...

4.3CVSS5.6AI score0.17425EPSS
Exploits0References9
UbuntuCve
UbuntuCveadded 2007/07/21 12:30 a.m.27 views

CVE-2007-3930

Interpretation conflict between Microsoft Internet Explorer and DocuWiki before 2007-06-26b allows remote attackers to inject arbitrary JavaScript and conduct cross-site scripting XSS attacks when spellchecking UTF-8 encoded messages via the spellutf8test function in lib/exe/spellcheck.php, which...

4.3CVSS6.1AI score0.17425EPSS
Exploits0References1
Prion
Prionadded 2007/07/21 12:30 a.m.18 views

Cross site scripting

Interpretation conflict between Microsoft Internet Explorer and DocuWiki before 2007-06-26b allows remote attackers to inject arbitrary JavaScript and conduct cross-site scripting XSS attacks when spellchecking UTF-8 encoded messages via the spellutf8test function in lib/exe/spellcheck.php, which...

4.3CVSS5.9AI score0.17425EPSS
Exploits0References9Affected Software1
Cvelist
Cvelistadded 2007/07/21 12:0 a.m.20 views

CVE-2007-3930

Interpretation conflict between Microsoft Internet Explorer and DocuWiki before 2007-06-26b allows remote attackers to inject arbitrary JavaScript and conduct cross-site scripting XSS attacks when spellchecking UTF-8 encoded messages via the spellutf8test function in lib/exe/spellcheck.php, which...

5.5AI score0.17425EPSS
Exploits0References9
CVE
CVEadded 2007/07/21 12:0 a.m.48 views

CVE-2007-3930

The CVE-2007-3930 entry concerns a XSS vulnerability in DokuWiki’s spellchecker backend. Affects DokuWiki spellcheck.php (lib/exe/spellcheck.php) where the spell_utf8test path triggers HTML document identification and script execution by Internet Explorer when validating UTF-8 messages, even if t...

4.3CVSS5.5AI score0.17425EPSS
Exploits0References9Affected Software2
seebug.org
seebug.orgadded 2006/12/25 12:0 a.m.50 views

DocuWiki With ImageMagick远程命令执行和拒绝服务漏洞

DocuWiki是一款基于web的WIKI程序。 DocuWiki存在多个安全问题,远程攻击者可以利用漏洞进行拒绝服务和命令执行攻击。 问题一是对图像的调整大小处理没有进行限制,可导致拒绝服务攻击。当libGD使用时(默认需要)必须先计算所需RAM,如果没有足够的RAM(一般8到20MB)给php进程使用,那么函数就会放弃。但是如果使用ImageMagick $conf'imconvert'使用时,没有限制存在,允许攻击者利用此特性消耗大量内存,造成拒绝服务攻击。...

7AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2004/08/18 12:0 a.m.10 views

DocuWiki Version Detection

Binary data 5036.prm...

7.3AI score
Exploits0
Rows per page
Query Builder