VYPR
Vendor

Pukiwiki

Products
2
CVEs
4
Across products
4
Status
Private

Products

2

Recent CVEs

4
  • CVE-2022-34486HigAug 23, 2022
    risk 0.47cvss 7.2epss 0.01

    Path traversal vulnerability in PukiWiki versions 1.4.5 to 1.5.3 allows a remote authenticated attacker with an administrative privilege to execute a malicious script via unspecified vectors.

  • CVE-2022-27637MedAug 23, 2022
    risk 0.40cvss 6.1epss 0.00

    Reflected cross-site scripting vulnerability in PukiWiki versions 1.5.1 to 1.5.3 allows a remote attacker to inject an arbitrary script via unspecified vectors.

  • CVE-2022-36350MedAug 23, 2022
    risk 0.35cvss 5.4epss 0.00

    Stored cross-site scripting vulnerability in PukiWiki versions 1.3.1 to 1.5.3 allows a remote attacker to inject an arbitrary script via unspecified vectors.

  • CVE-2011-3990Dec 22, 2011
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in plugin/comment.inc.php in PukiWiki Plus! 1.4.7plus-u2-i18n and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.