IDCVSSSummaryLast (major) updatePublished
CVE-2011-5309 4.3
Cross-site scripting (XSS) vulnerability in pages.php in Wikipad 1.6.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
02-01-2015 - 10:57 01-01-2015 - 06:59
CVE-2011-5310 5.0
Directory traversal vulnerability in pages.php in Wikipad 1.6.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter.
02-01-2015 - 10:56 01-01-2015 - 06:59
CVE-2011-5311 6.8
Cross-site request forgery (CSRF) vulnerability in pages.php in Wikipad 1.6.0 allows remote attackers to hijack the authentication of administrators for requests that modify pages via the data[text] parameter.
02-01-2015 - 10:55 01-01-2015 - 06:59
Back to Top Mark selected
Back to Top