CyberSec.Space Logo
Back to CVE Browser

CVE-2019-13588

MEDIUM
6.1
CVSS Severity Score
EPSS Score0.1490%
EPSS Percentile19.16th
PublishedJul 26, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

A cross-site scripting (XSS) vulnerability in getPagingStart() in core/lists/PAGING.php in WIKINDX before 5.8.2 allows remote attackers to inject arbitrary web script or HTML via the PagingStart parameter.

Affected Platforms (CPE)

πŸ“¦
Wikindx Project

Wikindx

<= 5.8.1

References & Advisories

πŸ”— https://sourceforge.net/p/wikindx/code/2794/
πŸ”— https://sourceforge.net/p/wikindx/code/2801/tree//wikindx/trunk/CHANGELOG.txt?diff=51060a0c271846770c56c75a:2800
πŸ”— https://sourceforge.net/p/wikindx/code/commit_browser
πŸ”— https://sourceforge.net/p/wikindx/code/2794/
πŸ”— https://sourceforge.net/p/wikindx/code/2801/tree//wikindx/trunk/CHANGELOG.txt?diff=51060a0c271846770c56c75a:2800
πŸ”— https://sourceforge.net/p/wikindx/code/commit_browser

Related Vulnerabilities

CVE-2007-327710.0

Unspecified vulnerability in the localization before 1.2 module for WIKINDX allows attackers to access certain administrative capa...

CVE-2019-99616.1

A cross-site scripting (XSS) vulnerability in ressource view in core/modules/resource/RESOURCEVIEW.php in Wikindx prior to version...

CVE-2019-129306.1

A cross-site scripting (XSS) vulnerability in noMenu() and noSubMenu() in core/navigation/MENU.php in WIKINDX prior to version 5.8...

CVE-2021-33406.1

A cross-site scripting (XSS) vulnerability in many forms of Wikindx before 5.7.0 and 6.x through 6.4.0 allows remote attackers to ...