Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2016-10447

Malware in sbrugna...

5.3CVSS7.2AI score0.01178EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2010-1693

Malware in sbrugna...

6.1CVSS6.1AI score0.00834EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-1408

Malware in sbrugna...

3.5CVSS9.2AI score0.0106EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-2931

Malware in sbrugna...

5CVSS9.2AI score0.01799EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-0177

Malware in sbrugna...

4.3CVSS6.1AI score0.00637EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-1223

Malware in sbrugna...

7.5CVSS7.3AI score0.02129EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2016-9646

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ikiwiki before 3.20161229 incorrectly called the CGI::FormBuilder-field method similar to the CGI-param API that led to Bugzilla's CVE-2014-1572, which can be...

5.3CVSS7.4AI score0.01178EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2016-4561

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in the cgierror function in CGI.pm in ikiwiki before 3.20160506 might allow remote attackers to inject arbitrary web scri...

6.1CVSS6.9AI score0.01465EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2016-10026

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ikiwiki 3.20161219 does not properly check if a revision changes the access permissions for a page on sites with the git and recentchanges plugins and the CGI...

7.5CVSS6.9AI score0.02129EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2019-9187

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ikiwiki before 3.20170111.1 and 3.2018x and 3.2019x before 3.20190228 allows SSRF via the aggregate plugin. The impact also includes reading local files via fil...

7.5CVSS7.4AI score0.01699EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:53 a.m.5 views

SUSE CVE-2017-0356

A flaw, similar to to CVE-2016-9646, exists in ikiwiki before 3.20170111, in the passwordauth plugin's use of CGI::FormBuilder, allowing an attacker to bypass authentication via repeated parameters...

9.8CVSS9.5AI score0.03461EPSS
Exploits1References2
OSV
OSV
added 2019/11/21 8:15 p.m.7 views

CVE-2015-2793

Cross-site scripting XSS vulnerability in templates/openid-selector.tmpl in ikiwiki before 3.20150329 allows remote attackers to inject arbitrary web script or HTML via the openididentifier parameter in a verify action to ikiwiki.cgi...

6.1CVSS6AI score
Exploits0References17
OSV
OSV
added 2019/10/29 7:15 p.m.7 views

CVE-2011-0428

Cross Site Scripting XSS in ikiwiki before 3.20110122 could allow remote attackers to insert arbitrary JavaScript due to insufficient checking in comments...

6.1CVSS5.9AI score0.00839EPSS
Exploits0References2
OSV
OSV
added 2018/04/13 3:29 p.m.10 views

CVE-2016-9646

ikiwiki before 3.20161229 incorrectly called the CGI::FormBuilder-field method similar to the CGI-param API that led to Bugzilla's CVE-2014-1572, which can be abused to lead to commit metadata forgery...

5.3CVSS8.5AI score0.01178EPSS
Exploits0References4
NVD
NVD
added 2018/04/13 3:29 p.m.26 views

CVE-2016-9646

ikiwiki before 3.20161229 incorrectly called the CGI::FormBuilder-field method similar to the CGI-param API that led to Bugzilla's CVE-2014-1572, which can be abused to lead to commit metadata forgery...

5.3CVSS7.2AI score0.01178EPSS
Exploits0References4
OSV
OSV
added 2017/02/13 6:59 p.m.7 views

CVE-2016-10026

ikiwiki 3.20161219 does not properly check if a revision changes the access permissions for a page on sites with the git and recentchanges plugins and the CGI interface enabled, which allows remote attackers to revert certain changes by leveraging permissions to change the page before the revisio...

7.5CVSS8.5AI score
Exploits0References5
CNVD
CNVD
added 2017/01/17 12:0 a.m.5 views

Authentication Bypass Vulnerability in Ikiwiki

Ikiwiki is a wiki compiler that supports the conversion of wiki pages into HTML pages for web publishing. An authentication bypass vulnerability exists in Ikiwiki. An attacker can exploit this vulnerability to bypass the authorization mechanism...

9.8CVSS6.9AI score0.03461EPSS
Exploits1References1
OSV
OSV
added 2011/04/11 6:55 p.m.11 views

CVE-2011-1401

ikiwiki before 3.20110328 does not ascertain whether the htmlscrubber plugin is enabled during processing of the "meta stylesheet" directive, which allows remote authenticated users to conduct cross-site scripting XSS attacks via crafted Cascading Style Sheets CSS token sequences in 1 the default...

5.2AI score
Exploits0References8
OSV
OSV
added 2010/03/31 6:0 p.m.5 views

CVE-2010-1195

Cross-site scripting XSS vulnerability in the htmlscrubber component in ikiwiki 2.x before 2.53.5 and 3.x before 3.20100312 allows remote attackers to inject arbitrary web script or HTML via a crafted data:image/svg+xml URI...

5.4AI score
Exploits0References5
Cvelist
Cvelist
added 2008/04/20 6:0 p.m.22 views

CVE-2008-0165

Cross-site request forgery CSRF vulnerability in Ikiwiki before 2.42 allows remote attackers to modify user preferences, including passwords, via the 1 preferences and 2 edit forms...

6.5AI score0.00637EPSS
Exploits0References7
Rows per page
Query Builder