CyberSec.Space Logo
返回 CVE 浏览器

CVE-2007-2612

HIGH
7.5
CVSS Severity Score
EPSS Score0.1290%
EPSS Percentile17.47th
Published2007年5月11日
Last Modified2026年4月23日

Vulnerability Description

SQL injection vulnerability in libs/Wakka.class.php in WikkaWiki (Wikka Wiki) before 1.1.6.3 allows remote attackers to execute arbitrary SQL commands via the limit parameter. NOTE: this issue only applies to a "modified installation."

Affected Platforms (CPE)

📦
Wikkawiki

Wikkawiki

<= 1.1.6.2

References & Advisories

🔗 http://osvdb.org/35826
🔗 http://wikkawiki.org/WikkaReleaseNotes
🔗 http://wush.net/trac/wikka/ticket/383
🔗 http://www.vupen.com/english/advisories/2007/1725
🔗 http://osvdb.org/35826
🔗 http://wikkawiki.org/WikkaReleaseNotes
🔗 http://wush.net/trac/wikka/ticket/383
🔗 http://www.vupen.com/english/advisories/2007/1725

相关漏洞威胁

CVE-2007-26138.3

WikkaWiki (Wikka Wiki) before 1.1.6.3 allows attackers in a shared virtual host server environment to upload and execute an arbitr...

CVE-2011-44487.5

SQL injection vulnerability in actions/usersettings/usersettings.php in WikkaWiki 1.3.1 and 1.3.2 allows remote attackers to execu...

CVE-2006-70497.5

The Method method in WikkaWiki (Wikka Wiki) before 1.1.6.2 calls the strstr and strrpos functions with the wrong argument order, w...

CVE-2006-70506.8

Cross-site scripting (XSS) vulnerability in WikkaWiki (Wikka Wiki) before 1.1.6.2 allows remote attackers to inject arbitrary java...