WikiDocs 代码注入漏洞

WikiDocs is a database-less Markdown flat file Wiki engine by the individual developer Manuel Zavatta in Italy. A code injection vulnerability exists in WikiDocs version 1.0.78 and earlier, which stems from cross-site scripting due to incorrect manipulation of the parameter path in the file...

CVE-2022-23375

WikiDocs version 0.1.18 has an authenticated remote code execution vulnerability. An attacker can upload a malicious file using the image upload form through index.php...