CyberSec.Space Logo
返回 CVE 浏览器

CVE-2019-13588

MEDIUM
6.1
CVSS Severity Score
EPSS Score0.1490%
EPSS Percentile19.16th
Published2019年7月26日
Last Modified2024年11月21日

Vulnerability Description

A cross-site scripting (XSS) vulnerability in getPagingStart() in core/lists/PAGING.php in WIKINDX before 5.8.2 allows remote attackers to inject arbitrary web script or HTML via the PagingStart parameter.

Affected Platforms (CPE)

📦
Wikindx Project

Wikindx

<= 5.8.1

References & Advisories

🔗 https://sourceforge.net/p/wikindx/code/2794/
🔗 https://sourceforge.net/p/wikindx/code/2801/tree//wikindx/trunk/CHANGELOG.txt?diff=51060a0c271846770c56c75a:2800
🔗 https://sourceforge.net/p/wikindx/code/commit_browser
🔗 https://sourceforge.net/p/wikindx/code/2794/
🔗 https://sourceforge.net/p/wikindx/code/2801/tree//wikindx/trunk/CHANGELOG.txt?diff=51060a0c271846770c56c75a:2800
🔗 https://sourceforge.net/p/wikindx/code/commit_browser

相关漏洞威胁

CVE-2007-327710.0

Unspecified vulnerability in the localization before 1.2 module for WIKINDX allows attackers to access certain administrative capa...

CVE-2019-99616.1

A cross-site scripting (XSS) vulnerability in ressource view in core/modules/resource/RESOURCEVIEW.php in Wikindx prior to version...

CVE-2019-129306.1

A cross-site scripting (XSS) vulnerability in noMenu() and noSubMenu() in core/navigation/MENU.php in WIKINDX prior to version 5.8...

CVE-2021-33406.1

A cross-site scripting (XSS) vulnerability in many forms of Wikindx before 5.7.0 and 6.x through 6.4.0 allows remote attackers to ...