| Max CVSS | 10.0 | Min CVSS | 6.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-2024 | 6.8 |
Unrestricted file upload vulnerability in the UpLoad feature (lib/plugin/UpLoad.php) in PhpWiki 1.3.x allows remote attackers to upload arbitrary PHP files with a (1) php3, (2) php4, or (3) php5 extension. "Successful exploitation requires being logg
|
16-10-2018 - 16:41 | 13-04-2007 - 18:19 | |
| CVE-2007-3193 | 10.0 |
lib/WikiUser/LDAP.php in PhpWiki before 1.3.13p1, when the configuration lacks a nonzero PASSWORD_LENGTH_MINIMUM, might allow remote attackers to bypass authentication via an empty password, which causes ldap_bind to return true when used with certai
|
29-07-2017 - 01:32 | 12-06-2007 - 23:30 | |
| CVE-2007-2025 | 7.5 |
Unrestricted file upload vulnerability in the UpLoad feature (lib/plugin/UpLoad.php) in PhpWiki 1.3.11p1 allows remote attackers to upload arbitrary PHP files with a double extension, as demonstrated by .php.3, which is interpreted by Apache as being
|
05-09-2008 - 21:22 | 13-04-2007 - 18:19 |