Vulnerabilities (CVE)

Filtered by vendor Sofawiki Project Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-29720 1 Sofawiki Project 1 Sofawiki 2024-02-28 N/A 6.1 MEDIUM
SofaWiki <=3.8.9 is vulnerable to Cross Site Scripting (XSS) via index.php.
CVE-2023-29721 1 Sofawiki Project 1 Sofawiki 2024-02-28 N/A 9.8 CRITICAL
SofaWiki <= 3.8.9 has a file upload vulnerability that leads to command execution.