CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2007-2613

HIGH
8.3
CVSS Severity Score
EPSS Score0.0370%
EPSS Percentile14.14th
Published2007年5月11日
Last Modified2026年4月23日

Vulnerability Description

WikkaWiki (Wikka Wiki) before 1.1.6.3 allows attackers in a shared virtual host server environment to upload and execute an arbitrary configuration file by modifying the WAKKA_CONFIG environment variable.

Affected Platforms (CPE)

📦
Wikkawiki

Wikkawiki

<= 1.1.6.2

References & Advisories

🔗 http://osvdb.org/35825
🔗 http://wikkawiki.org/WikkaReleaseNotes
🔗 http://wush.net/trac/wikka/ticket/98
🔗 http://www.vupen.com/english/advisories/2007/1725
🔗 http://osvdb.org/35825
🔗 http://wikkawiki.org/WikkaReleaseNotes
🔗 http://wush.net/trac/wikka/ticket/98
🔗 http://www.vupen.com/english/advisories/2007/1725

相關漏洞威脅

CVE-2007-26127.5

SQL injection vulnerability in libs/Wakka.class.php in WikkaWiki (Wikka Wiki) before 1.1.6.3 allows remote attackers to execute ar...

CVE-2011-44487.5

SQL injection vulnerability in actions/usersettings/usersettings.php in WikkaWiki 1.3.1 and 1.3.2 allows remote attackers to execu...

CVE-2006-70497.5

The Method method in WikkaWiki (Wikka Wiki) before 1.1.6.2 calls the strstr and strrpos functions with the wrong argument order, w...

CVE-2006-70506.8

Cross-site scripting (XSS) vulnerability in WikkaWiki (Wikka Wiki) before 1.1.6.2 allows remote attackers to inject arbitrary java...