Vulnerabilities (CVE)

Filtered by vendor Mozilo Subscribe
Filtered by product Mozilowiki
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-6131 1 Mozilo 1 Mozilowiki 2024-11-21 6.0 MEDIUM N/A
Session fixation vulnerability in moziloWiki 1.0.1 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
CVE-2008-6130 1 Mozilo 1 Mozilowiki 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in index.php in moziloWiki 1.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) action and (2) page parameters.
CVE-2008-6129 1 Mozilo 1 Mozilowiki 2024-11-21 4.3 MEDIUM N/A
Directory traversal vulnerability in print.php in moziloWiki 1.0.1 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter.