Vulnerabilities (CVE)

Filtered by vendor Easy-script Subscribe
Filtered by product Wysi Wiki Wyg
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-5323 1 Easy-script 1 Wysi Wiki Wyg 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in index.php in Wysi Wiki Wyg 1.0 allows remote attackers to inject arbitrary web script or HTML via the s parameter.
CVE-2008-5322 1 Easy-script 1 Wysi Wiki Wyg 2024-11-21 7.8 HIGH N/A
Wysi Wiki Wyg 1.0 allows remote attackers to obtain system information via an invalid categup parameter to index.php, which calls the phpinfo function.
CVE-2008-3205 1 Easy-script 1 Wysi Wiki Wyg 2024-11-21 5.0 MEDIUM N/A
Directory traversal vulnerability in index.php in Easy-Script Wysi Wiki Wyg 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the c parameter.