CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

No description provided by source. source: http://www.securityfocus.com/bid/11516/info MoniWiki is reported prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied URI input before including it in dynamic web page content. This issue could permit a remote...

7.1AI score

Exploits0

OpenVAS•added 2012/02/21 12:0 a.m.•11 views

MoniWiki <= 1.1.5 'login_id' XSS Vulnerability - Active Check

MoniWiki is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.6AI score

Exploits0References4

Packet Storm•added 2012/02/18 12:0 a.m.•18 views

MoniWiki Cross Site Scripting

Exploit Title: MoniWiki Cross Site Scripting Date: 17.02.2012 Author: Sony Software Link: http://moniwiki.kldp.net/wiki.php Google Dorks: inurl:EnUserPreferences intext:moniwiki Web Browser : Mozilla Firefox Blog : http://st2tea.blogspot.com PoC:...

7.4AI score

Exploits0

NVD•added 2006/07/06 8:5 p.m.•10 views

CVE-2006-3399

Cross-site scripting XSS vulnerability in wiki.php in MoniWiki before 1.1.2-20060702 allows remote attackers to inject arbitrary Javascript via the URL, which is reflected back in an error message, a variant of CVE-2004-1632...

2.6CVSS5.7AI score0.00704EPSS

Exploits1References7

Cvelist•added 2006/07/06 8:0 p.m.•20 views

CVE-2006-3399

5.7AI score0.00704EPSS

Exploits1References7

CVE•added 2006/07/06 8:0 p.m.•37 views

CVE-2006-3399

Summary (CVE-2006-3399) : A cross‑site scripting (XSS) flaw in MoniWiki’s wiki.php affects releases prior to 1.1.2-20060702. An attacker can craft a URL to inject arbitrary JavaScript which is reflected back in an error message. This vulnerability is described as a variant of CVE-2004-1632. Affec...

2.6CVSS5.9AI score0.00704EPSS

Exploits1References7Affected Software1

securityvulns•added 2006/07/02 12:0 a.m.•27 views

[Kil13r-SA-20060701-2] MoniWiki 1.1.1 Cross-Site Scripting Vulnerability

Title: Kil13r-SA-20060701-2 MoniWiki 1.1.1 Cross-Site Scripting Vulnerability Author: Kil13r - http://www.kil13r.info/ Local / Remote: Remote Timeline: 2006/06/28 - Discovery 2006/06/28 - Vendor notification 2006/06/30 - Vendor notification 2006/07/01 - Release Affected version: MoniWiki 1.1.1 or...

1.7AI score

Exploits0

Packet Storm•added 2006/07/02 12:0 a.m.•20 views

Kil13r-SA-20060701-2.txt

7.4AI score

Exploits0

OpenVAS•added 2005/11/03 12:0 a.m.•17 views

MoniWiki < 1.0.9 XSS Vulnerability - Active Check

MoniWiki is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5.9AI score0.00444EPSS

Exploits1References2

CVE•added 2005/02/20 5:0 a.m.•41 views

CVE-2004-1545

The CVE-2004-1545 vulnerability affects MoniWiki (versions 1.0.9.2 and earlier) when used with Apache mod_mime. UploadFile.php fails to properly handle files with two extensions (e.g., .php.hwp), allowing remote attackers to upload and execute arbitrary code. This is triggered by the file-extensi...

5CVSS7.8AI score0.01796EPSS

Exploits0References6Affected Software1

CVE•added 2005/02/20 5:0 a.m.•43 views

CVE-2004-1632

MoniWiki is affected by CVE-2004-1632: a cross-site scripting (XSS) vulnerability in wiki.php in MoniWiki 1.0.8 and earlier. The issue arises from insufficient validation of arguments to wiki.php, allowing remote attackers to inject arbitrary web script or HTML. Impact: XSS in users’ browsers; ex...

4.3CVSS5.7AI score0.00444EPSS

Exploits1References4Affected Software1

Cvelist•added 2005/02/20 5:0 a.m.•13 views

CVE-2004-1632

Cross-site scripting XSS vulnerability in wiki.php in MoniWiki 1.0.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the arguments to wiki.php...

5.6AI score0.00444EPSS

Exploits1References4

Cvelist•added 2005/02/20 5:0 a.m.•11 views

CVE-2004-1545

UploadFile.php in MoniWiki 1.0.9.2 and earlier, when used with Apache modmime, does not properly handle files with two file extensions, such as .php.hwp, which allows remote attackers to upload and execute arbitrary code...

7.4AI score0.01796EPSS

Exploits0References6

NVD•added 2004/12/31 5:0 a.m.•8 views

CVE-2004-1545

5CVSS7.4AI score0.01796EPSS

Exploits0References6

securityvulns•added 2004/12/16 12:0 a.m.•26 views

STG Security Advisory: [SSA-20041215-15] Vulnerability of uploading files with multiple extensions in MoniWiki

STG Security Advisory: SSA-20041215-15 Vulnerability of uploading files with multiple extensions in MoniWiki Revision 1.0 Date Published: 2004-12-15 KST Last Update: 2004-12-15 Disclosed by SSR Team [email protected] Summary ======== MoniWiki is a wiki web application used by many Korean...

0.6AI score

Exploits0

NVD•added 2004/10/25 4:0 a.m.•11 views

CVE-2004-1632

Cross-site scripting XSS vulnerability in wiki.php in MoniWiki 1.0.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the arguments to wiki.php...

4.3CVSS5.6AI score0.00444EPSS

Exploits1References4

Tenable Nessus•added 2004/10/25 12:0 a.m.•24 views

MoniWiki < 1.0.9 wiki.php XSS

The remote host seems to be running MoniWiki, a wiki web application written in PHP. The remote version of this software is vulnerable to cross-site scripting attacks, through the script 'wiki.php'. With a specially crafted URL, an attacker can cause arbitrary code execution in users' browsers...

4.3CVSS5.7AI score0.00444EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by