Max CVSS | 6.5 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2011-4333 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in LabWiki 1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) from parameter to index.php or the (2) page_no parameter to recentchanges.php.
|
17-10-2019 - 18:38 | 23-10-2017 - 18:29 | |
CVE-2011-4334 | 6.5 |
edit.php in LabWiki 1.1 and earlier does not properly verify uploaded user files, which allows remote authenticated users to upload arbitrary PHP files via a PHP file with a .gif extension in the userfile parameter.
|
25-10-2017 - 11:57 | 23-10-2017 - 18:29 |