9 matches found
EUVD-2006-5828
Malware in sbrugna...
EUVD-2006-5829
Malware in sbrugna...
CVE-2006-5844
Speedywiki 2.0 allows remote attackers to obtain the full path of the web server via the 1 showRevisions and 2 searchText parameters in a index.php, and b a direct request to upload.php without any parameters...
CVE-2006-5843
Cross-site scripting XSS vulnerability in index.php in Speedywiki 2.0 allows remote attackers to inject arbitrary web script or HTML via the showRevisions parameter...
CVE-2006-5845
Unrestricted file upload vulnerability in index.php in Speedywiki 2.0 allows remote authenticated users to upload and execute arbitrary PHP code by setting the upload parameter to 1...
CVE-2006-5844
Speedywiki 2.0 allows remote attackers to obtain the full path of the web server via the 1 showRevisions and 2 searchText parameters in a index.php, and b a direct request to upload.php without any parameters...
CVE-2006-5844
Speedywiki 2.0 is affected. The vulnerability allows remote attackers to disclose the web server’s full path by abusing the showRevisions[] and searchText[] parameters in index.php, and also via a direct request to upload.php with no parameters. This aligns with NVD data and PT Security’s advisor...
CVE-2006-5843
This CVE concerns Speedywiki version 2.0, where an XSS flaw exists in index.php via the showRevisions parameter. The vulnerability allows remote attackers to inject arbitrary web script/HTML. No concrete patch/version fix is documented in the provided sources. The PT-2006-6517 entry confirms the ...
PT-2006-6519 · Speedywiki · Speedywiki
Name of the Vulnerable Software and Affected Versions: Speedywiki version 2.0 Description: The issue allows remote authenticated users to upload and execute arbitrary PHP code. This is achieved by setting the upload parameter to 1 in the index.php file. Recommendations: For Speedywiki version 2.0...