Wikkawiki Security Vulnerabilities and Issues — Wikkawiki CVE List

Lucene search

WikkawikiWikkawiki

4 matches found

CVE•added 2007/05/09 10:19 a.m.•38 views

CVE-2007-2552

The RecentChanges feature in WikkaWiki (Wikka Wiki) before 1.1.6.3 allows remote attackers to obtain the names, and possibly revision notes and dates, of private pages via RSS feeds.

5CVSS6.7AI score0.00598EPSS

CVE•added 2007/05/11 10:19 a.m.•38 views

CVE-2007-2613

WikkaWiki (Wikka Wiki) before 1.1.6.3 allows attackers in a shared virtual host server environment to upload and execute an arbitrary configuration file by modifying the WAKKA_CONFIG environment variable.

8.3CVSS6.9AI score0.00115EPSS

CVE•added 2007/05/09 10:19 a.m.•35 views

CVE-2007-2551

Cross-site scripting (XSS) vulnerability in usersettings.php in WikkaWiki (Wikka Wiki) before 1.1.6.3 allows remote attackers to inject arbitrary web script or HTML via the name parameter.

4.3CVSS5.7AI score0.00508EPSS

CVE•added 2007/05/11 10:19 a.m.•34 views

CVE-2007-2612

SQL injection vulnerability in libs/Wakka.class.php in WikkaWiki (Wikka Wiki) before 1.1.6.3 allows remote attackers to execute arbitrary SQL commands via the limit parameter. NOTE: this issue only applies to a "modified installation."

7.5CVSS8.4AI score0.00397EPSS