Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2011-5309 | 4.3 |
Cross-site scripting (XSS) vulnerability in pages.php in Wikipad 1.6.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
|
02-01-2015 - 15:57 | 01-01-2015 - 11:59 | |
CVE-2011-5310 | 5.0 |
Directory traversal vulnerability in pages.php in Wikipad 1.6.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter.
|
02-01-2015 - 15:56 | 01-01-2015 - 11:59 | |
CVE-2011-5311 | 6.8 |
Cross-site request forgery (CSRF) vulnerability in pages.php in Wikipad 1.6.0 allows remote attackers to hijack the authentication of administrators for requests that modify pages via the data[text] parameter.
|
02-01-2015 - 15:55 | 01-01-2015 - 11:59 |