Vulnerabilities (CVE)

Filtered by vendor Labwiki Project Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2011-4334 1 Labwiki Project 1 Labwiki 2024-02-28 6.5 MEDIUM 8.8 HIGH
edit.php in LabWiki 1.1 and earlier does not properly verify uploaded user files, which allows remote authenticated users to upload arbitrary PHP files via a PHP file with a .gif extension in the userfile parameter.