Vulnerabilities (CVE)

Filtered by vendor Pukiwiki Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-36350 1 Pukiwiki 1 Pukiwiki 2024-11-21 N/A 5.4 MEDIUM
Stored cross-site scripting vulnerability in PukiWiki versions 1.3.1 to 1.5.3 allows a remote attacker to inject an arbitrary script via unspecified vectors.
CVE-2022-34486 1 Pukiwiki 1 Pukiwiki 2024-11-21 N/A 7.2 HIGH
Path traversal vulnerability in PukiWiki versions 1.4.5 to 1.5.3 allows a remote authenticated attacker with an administrative privilege to execute a malicious script via unspecified vectors.
CVE-2022-27637 1 Pukiwiki 1 Pukiwiki 2024-11-21 N/A 6.1 MEDIUM
Reflected cross-site scripting vulnerability in PukiWiki versions 1.5.1 to 1.5.3 allows a remote attacker to inject an arbitrary script via unspecified vectors.
CVE-2011-3990 1 Pukiwiki 1 Pukiwiki Plus\! 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in plugin/comment.inc.php in PukiWiki Plus! 1.4.7plus-u2-i18n and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.