Lucene search

Wiki Security Vulnerabilities

cve

CVE-2005-1799

Cross-site scripting (XSS) vulnerability in FreeStyle Wiki 3.5.7 and WikiLite (FSWikiLite) .10 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

5.5AI Score

0.002EPSS

2005-06-01 04:00 AM

cve

CVE-2006-3380

Algorithmic complexity vulnerability in FreeStyle Wiki before 3.6.2 allows remote attackers to cause a denial of service (CPU consumption) by performing a diff between large, crafted pages that trigger the worst case.

6.9AI Score

0.018EPSS

2006-07-06 08:05 PM

cve

CVE-2006-6889

FreeStyle Wiki (fswiki) 3.6.2 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain passwords via a direct request for config/user.dat.

6.6AI Score

0.06EPSS

2007-01-05 06:00 PM