CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site scripting XSS vulnerability in pages.php in Wikipad 1.6.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

4.3CVSS5.9AI score0.00225EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 5:47 a.m.•3 views

CVE-2011-5310

Directory traversal vulnerability in pages.php in Wikipad 1.6.0 allows remote attackers to read arbitrary files via a .. dot dot in the id parameter...

5CVSS7AI score0.00136EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 1:55 a.m.•3 views

CVE-2011-5311

Cross-site request forgery CSRF vulnerability in pages.php in Wikipad 1.6.0 allows remote attackers to hijack the authentication of administrators for requests that modify pages via the datatext parameter...

6.8CVSS7.5AI score0.00121EPSS

Exploits1References1

NVD•added 2015/01/01 11:59 a.m.•8 views

CVE-2011-5311

6.8CVSS7.1AI score0.00121EPSS

Exploits1References1

NVD•added 2015/01/01 11:59 a.m.•7 views

CVE-2011-5310

Directory traversal vulnerability in pages.php in Wikipad 1.6.0 allows remote attackers to read arbitrary files via a .. dot dot in the id parameter...

5CVSS6.7AI score0.00136EPSS

Exploits1References1

NVD•added 2015/01/01 11:59 a.m.•8 views

CVE-2011-5309

Cross-site scripting XSS vulnerability in pages.php in Wikipad 1.6.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

4.3CVSS5.7AI score0.00225EPSS

Exploits1References1

Prion•added 2015/01/01 11:59 a.m.•20 views

Cross site scripting

Cross-site scripting XSS vulnerability in pages.php in Wikipad 1.6.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

4.3CVSS6.1AI score0.00225EPSS

Exploits1References1Affected Software1

Prion•added 2015/01/01 11:59 a.m.•8 views

Cross site request forgery (csrf)

6.8CVSS7.6AI score0.00121EPSS

Exploits1References1Affected Software1

Prion•added 2015/01/01 11:59 a.m.•6 views

Directory traversal

Directory traversal vulnerability in pages.php in Wikipad 1.6.0 allows remote attackers to read arbitrary files via a .. dot dot in the id parameter...

5CVSS7.2AI score0.00136EPSS

Exploits1References1Affected Software1

CVE•added 2015/01/01 11:0 a.m.•37 views

CVE-2011-5311

CVE-2011-5311 describes a Cross-site request forgery (CSRF) in Wikipad 1.6.0, where requests that modify pages via the data[text] parameter can hijack an administrator’s authenticated session. Affected component: pages.php. Root cause and detailed exploit path are not elaborated beyond the parame...

6.8CVSS7.3AI score0.00121EPSS

Exploits1References1Affected Software1

CVE•added 2015/01/01 11:0 a.m.•28 views

CVE-2011-5309

CVE-2011-5309 describes a cross-site scripting (XSS) vulnerability in Wikipad 1.6.0, where the vulnerable component is pages.php and the flaw allows remote attackers to inject arbitrary script/HTML via the id parameter. The available references (NVD/Red Hat PRION/CVE List) reiterate the same desc...

4.3CVSS5.9AI score0.00225EPSS

Exploits1References1Affected Software1

CVE•added 2015/01/01 11:0 a.m.•37 views

CVE-2011-5310

Wikipad 1.6.0 is affected by a directory traversal in pages.php that lets remote attackers read arbitrary files via a .. in the id parameter. The root cause is improper path handling in the PHP script, enabling access to filesystem locations outside the intended directory. Publicly provided refer...

5CVSS6.8AI score0.00136EPSS

Exploits1References1Affected Software1

Cvelist•added 2015/01/01 11:0 a.m.•14 views

CVE-2011-5311

7.1AI score0.00121EPSS

Exploits1References1

Cvelist•added 2015/01/01 11:0 a.m.•15 views

CVE-2011-5310

Directory traversal vulnerability in pages.php in Wikipad 1.6.0 allows remote attackers to read arbitrary files via a .. dot dot in the id parameter...

6.7AI score0.00136EPSS

Exploits1References1

exploitpack•added 2011/02/15 12:0 a.m.•12 views

Wikipad 1.6.0 - Cross-Site Scripting HTML Injection Information Disclosure

Wikipad 1.6.0 - Cross-Site Scripting HTML Injection Information Disclosure source: https://www.securityfocus.com/bid/46383/info Wikipad is prone to a cross-site scripting vulnerability, an HTML-injection vulnerability, and an information-disclosure vulnerability. An attacker may leverage these...

7AI score

Exploits0

securityvulns•added 2011/02/15 12:0 a.m.•50 views

HTB22826: Multiple XSS vulnerabilities in Wikipad

Vulnerability ID: HTB22826 Reference: http://www.htbridge.ch/advisory/multiplexssvulnerabilitiesinwikipad.html Product: Wikipad Vendor: Cherry-Design http://www.cherry-software.spb.ru/ Vulnerable Version: 1.6.0 Vendor Notification: 01 February 2011 Vulnerability Type: XSS Cross Site Scripting Ris...

0.3AI score

Exploits0

securityvulns•added 2011/02/15 12:0 a.m.•52 views

HTB22827: File Content Disclosure in Wikipad

Vulnerability ID: HTB22827 Reference: http://www.htbridge.ch/advisory/filecontentdisclosureinwikipad.html Product: Wikipad Vendor: Cherry-Design http://www.cherry-software.spb.ru/ Vulnerable Version: 1.6.0 Vendor Notification: 01 February 2011 Vulnerability Type: File Content Disclosure Risk leve...

6.8AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by