CPE-0171BCA8-D057-4DA9-8D93-142EBEA564C6 Détail

CPE Details

Ikiwiki Ikiwiki 3.20110122

Vendor

ikiwiki

Product

ikiwiki

Version

3.20110122

Created

2019-11-12
11h59 +00:00

Modifié

2019-11-12
11h59 +00:00

Liens officiels

CPE NVD

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Gestion des notifications

Liste des Notifications

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

CPE ID

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

CPE Name: cpe:2.3:a:ikiwiki:ikiwiki:3.20110122:::::::*

Informations

Vendor

ikiwiki

Product

ikiwiki

Version

3.20110122

Related CVE

Open and find in CVE List

CVE ID	Publié	Description	Score	Gravité
CVE-2015-2793	2019-11-21 18h48 +00:00	Cross-site scripting (XSS) vulnerability in templates/openid-selector.tmpl in ikiwiki before 3.20150329 allows remote attackers to inject arbitrary web script or HTML via the openid_identifier parameter in a verify action to ikiwiki.cgi.	6.1	Moyen
CVE-2011-1408	2019-10-29 18h51 +00:00	ikiwiki before 3.20110608 allows remote attackers to hijack root's tty and run symlink attacks.	8.2	Haute
CVE-2019-9187	2019-06-05 15h55 +00:00	ikiwiki before 3.20170111.1 and 3.2018x and 3.2019x before 3.20190228 allows SSRF via the aggregate plugin. The impact also includes reading local files via file: URIs.	7.5	Haute
CVE-2016-9646	2018-04-13 15h00 +00:00	ikiwiki before 3.20161229 incorrectly called the CGI::FormBuilder->field method (similar to the CGI->param API that led to Bugzilla's CVE-2014-1572), which can be abused to lead to commit metadata forgery.	5.3	Moyen
CVE-2017-0356	2018-04-13 15h00 +00:00	A flaw, similar to to CVE-2016-9646, exists in ikiwiki before 3.20170111, in the passwordauth plugin's use of CGI::FormBuilder, allowing an attacker to bypass authentication via repeated parameters.	9.8	Critique
CVE-2016-4561	2016-05-10 17h00 +00:00	Cross-site scripting (XSS) vulnerability in the cgierror function in CGI.pm in ikiwiki before 3.20160506 might allow remote attackers to inject arbitrary web script or HTML via unspecified vectors involving an error message.	6.1	Moyen
CVE-2012-0220	2012-05-29 18h00 +00:00	Multiple cross-site scripting (XSS) vulnerabilities in the meta plugin (Plugin/meta.pm) in ikiwiki before 3.20120516 allow remote attackers to inject arbitrary web script or HTML via the (1) author or (2) authorurl meta tags.	4.3
CVE-2011-1401	2011-04-11 16h00 +00:00	ikiwiki before 3.20110328 does not ascertain whether the htmlscrubber plugin is enabled during processing of the "meta stylesheet" directive, which allows remote authenticated users to conduct cross-site scripting (XSS) attacks via crafted Cascading Style Sheets (CSS) token sequences in (1) the default stylesheet or (2) an alternate stylesheet.	3.5

Ikiwiki Ikiwiki 3.20110122

CPE Details

CPE Name: cpe:2.3:a:ikiwiki:ikiwiki:3.20110122:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:ikiwiki:ikiwiki:3.20110122:::::::*