Shodan
Vulnerabilities
Vulnerable Software
Wikyblog:  >> Wikyblog  >> 1.3.2  Security Vulnerabilities
CVE-2008-6097
Multiple cross-site scripting (XSS) vulnerabilities in WikyBlog before 1.7.1 allow remote attackers to inject arbitrary web script or HTML via the (1) key parameter to index.php/Special/Main/keywordSearch, (2) revNum parameter to index.php/Edit/Main/Home, (3) to parameter to index.php/Special/Main/WhatLinksHere, (4) user parameter to index.php/Special/Main/UserEdits, and (5) the PATH_INFO to index.php.
CVSS Score
4.3
EPSS Score
0.004
Published
2009-02-09
CVE-2006-6465
Directory traversal vulnerability in WBmap.php in WikyBlog 1.3.2 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the l parameter. NOTE: CVE disputes this vulnerability because l is validated by ctype_alpha before use
CVSS Score
6.5
EPSS Score
0.004
Published
2006-12-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved