CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

HTTP based detection of WikyBlog. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.146646";...

7.4AI score

Exploits0References1

seebug.org•added 2014/07/01 12:0 a.m.•10 views

WikyBlog 1.7.1 Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/31525/info WikyBlog is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browse...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•13 views

WikyBlog 1.2.x Index.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20350/info WikyBlog is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlyin...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•11 views

WikyBlog 1.7.3rc2 - Multiple Vulnerabilities

No description provided by source...

7.1AI score

Exploits0

securityvulns•added 2012/03/19 12:0 a.m.•50 views

WikyBlog 1.7.3RC2 XSS vulnerability

Advisory: WikyBlog 1.7.3RC2 XSS vulnerability Advisory ID: SSCHADV2012-006 Author: Stefan Schurtz Affected Software: Successfully tested on WikyBlog 1.7.3RC2 Vendor URL: http://www.wikyblog.com/ Vendor Status: informed ========================== Vulnerability Description =========================...

6.1AI score

Exploits0

Packet Storm•added 2012/03/16 12:0 a.m.•19 views

WikyBlog 1.7.3RC2 Cross Site Scripting

7.4AI score

Exploits0

Prion•added 2010/02/27 12:30 a.m.•10 views

Remote file inclusion

PHP remote file inclusion vulnerability in include/WBmap.php in WikyBlog 1.7.3 rc2 allows remote attackers to execute arbitrary PHP code via a URL in the langFile parameter...

7.5CVSS8AI score0.02319EPSS

Exploits1References5Affected Software1

NVD•added 2010/02/27 12:30 a.m.•10 views

CVE-2010-0757

Unrestricted file upload vulnerability in index.php/Attach in WikyBlog 1.7.3rc2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension using the uploadform action, then accessing it via a direct request to the file in...

6.5CVSS7.3AI score0.04009EPSS

Exploits1References5

Prion•added 2010/02/27 12:30 a.m.•8 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php/Special/Main/Templates in WikyBlog 1.7.2 and 1.7.3 rc2 allows remote attackers to inject arbitrary web script or HTML via the which parameter in a copy action...

4.3CVSS6.1AI score0.08104EPSS

Exploits1References9Affected Software1

Prion•added 2010/02/27 12:30 a.m.•11 views

Session fixation

Session fixation vulnerability in WikyBlog 1.7.3 rc2 allows remote attackers to hijack web sessions by setting the jsessionid parameter to 1 index.php/Comment/Main, 2 index.php/Comment/Main/HomeWiky, or 3 index.php/Edit/Main...

5.8CVSS7.2AI score0.00694EPSS

Exploits1References4Affected Software1

NVD•added 2010/02/27 12:30 a.m.•9 views

CVE-2010-0756

5.8CVSS6.7AI score0.00694EPSS

Exploits1References4

NVD•added 2010/02/27 12:30 a.m.•7 views

CVE-2010-0754

4.3CVSS5.6AI score0.08104EPSS

Exploits1References9

Rows per page