CVE-2026-2861

A vulnerability was detected in Foswiki up to 2.1.10. The affected element is an unknown function of the component Changes/Viewfile/Oops. The manipulation results in information disclosure. It is possible to launch the attack remotely. The exploit is now public and may be used. Upgrading to versi...

CVE-2026-2861

A vulnerability was detected in Foswiki up to 2.1.10. The affected element is an unknown function of the component Changes/Viewfile/Oops. The manipulation results in information disclosure. It is possible to launch the attack remotely. The exploit is now public and may be used. Upgrading to versi...

CVE-2026-2861

A vulnerability was detected in Foswiki up to 2.1.10. The affected element is an unknown function of the component Changes/Viewfile/Oops. The manipulation results in information disclosure. It is possible to launch the attack remotely. The exploit is now public and may be used. Upgrading to versi...

CVE-2026-2861 Foswiki Changes/Viewfile/Oops information disclosure

A vulnerability was detected in Foswiki up to 2.1.10. The affected element is an unknown function of the component Changes/Viewfile/Oops. The manipulation results in information disclosure. It is possible to launch the attack remotely. The exploit is now public and may be used. Upgrading to versi...

CVE-2026-2861

The CVE-2026-2861 entry affects Foswiki up to version 2.1.10, specifically the Changes/Viewfile/Oops component. The vulnerability arises from an unknown function that can lead to information disclosure and can be exploited remotely. Public exploit availability is indicated, with remediation via u...

CVE-2026-2861

A vulnerability was detected in Foswiki up to 2.1.10. The affected element is an unknown function of the component Changes/Viewfile/Oops. The manipulation results in information disclosure. It is possible to launch the attack remotely. The exploit is now public and may be used. Upgrading to versi...

CVE-2026-2861 Foswiki Changes/Viewfile/Oops information disclosure

A vulnerability was detected in Foswiki up to 2.1.10. The affected element is an unknown function of the component Changes/Viewfile/Oops. The manipulation results in information disclosure. It is possible to launch the attack remotely. The exploit is now public and may be used. Upgrading to versi...

Foswiki 访问控制错误漏洞

Foswiki is a Wiki software developed in the Perl language. It is a truly free and open-source platform for creating user-defined applications, suitable for both public and corporate environments. Foswiki versions 2.1.10 and earlier contained an access control vulnerability, which stemmed from...

PT-2026-21359

Name of the Vulnerable Software and Affected Versions Foswiki versions prior to 2.1.11 Description A flaw exists in Foswiki that allows information disclosure. The issue is located within an unknown function of the Changes/Viewfile/Oops component. This can be exploited remotely. The exploit is...

EUVD-2013-1693

Malware in sbrugna...

EUVD-2012-1044

Malware in sbrugna...

EUVD-2009-4816

Malware in sbrugna...

EUVD-2010-4189

Malware in sbrugna...

EUVD-2009-1432

Malware in sbrugna...

EUVD-2023-28708

Malicious code in bioql PyPI...

EUVD-2023-37908

Malicious code in bioql PyPI...

PT-2025-118: UNION-based SQL injection in MentionsPlugin for FosWiki

The vulnerability was identified in MentionsPlugin for FosWiki 2.1.9. The vulnerability can be exploited due to insufficient validation of user input. This allows an attacker to inject arbitrary SQL statements and thereby modify the logic of database queries. Vulnerability status: Confirmed by...

CVE-2023-33756

An issue in the SpreadSheetPlugin component of Foswiki v2.1.7 and below allows attackers to execute a directory traversal...

CVE-2023-24698

Insufficient parameter validation in the Foswiki::Sandbox component of Foswiki v2.1.7 and below allows attackers to perform a directory traversal via supplying a crafted web request...

CVE-2012-1004

Multiple cross-site scripting XSS vulnerabilities in UI/Register.pm in Foswiki before 1.1.5 allow remote authenticated users with CHANGE privileges to inject arbitrary web script or HTML via the 1 text, 2 FirstName, 3 LastName, 4 OrganisationName, 5 OrganisationUrl, 6 Profession, 7 Country, 8...