Vulnerabilities (CVE)

Filtered by vendor Zwiki Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2004-1075 1 Zwiki 1 Zwiki 2024-11-20 6.8 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in standard_error_message.dtml for Zwiki after 0.10.0rc1 to 0.36.2 allows remote attackers to inject arbitrary HTML and web script via a malformed URL, which is not properly cleansed when generating an error message.