CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ikiwiki: >> Ikiwiki >> 3.20170110 Security Vulnerabilities

CVE-2019-9187

ikiwiki before 3.20170111.1 and 3.2018x and 3.2019x before 3.20190228 allows SSRF via the aggregate plugin. The impact also includes reading local files via file: URIs.

CVSS Score

7.5

EPSS Score

0.003

Published

2019-06-05

CVE-2017-0356

A flaw, similar to to CVE-2016-9646, exists in ikiwiki before 3.20170111, in the passwordauth plugin's use of CGI::FormBuilder, allowing an attacker to bypass authentication via repeated parameters.

CVSS Score

9.8

EPSS Score

0.1

Published

2018-04-13

Page 1

Vulnerabilities

Vulnerable Software

Ikiwiki: >> Ikiwiki >> 3.20170110 Security Vulnerabilities

Products

Pricing

Contact Us