Lucene search

Pukiwiki Security Vulnerabilities

cve

CVE-2011-3990

Cross-site scripting (XSS) vulnerability in plugin/comment.inc.php in PukiWiki Plus! 1.4.7plus-u2-i18n and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

5.8AI Score

0.001EPSS

2022-10-03 04:15 PM

cve

CVE-2022-27637

Reflected cross-site scripting vulnerability in PukiWiki versions 1.5.1 to 1.5.3 allows a remote attacker to inject an arbitrary script via unspecified vectors.

6.1CVSS

5.9AI Score

0.001EPSS

2022-08-23 07:15 AM

cve

CVE-2022-34486

Path traversal vulnerability in PukiWiki versions 1.4.5 to 1.5.3 allows a remote authenticated attacker with an administrative privilege to execute a malicious script via unspecified vectors.

7.2CVSS

6.7AI Score

0.002EPSS

2022-08-23 07:15 AM

cve

CVE-2022-36350

Stored cross-site scripting vulnerability in PukiWiki versions 1.3.1 to 1.5.3 allows a remote attacker to inject an arbitrary script via unspecified vectors.

5.4CVSS

5.1AI Score

0.001EPSS

2022-08-23 07:15 AM