Scaner-VSvulnerability catalog · v4.2

Home Catalog Sources CWE CAPEC ATT&CK Mitigations Products Vendors Docs

← Back to List

Joomla›Applicationnvd

Jd-wiki

Vulnerabilities

2

Known exploited

0

Max CVSS

6.8

Top EPSS

0.05575

Severity breakdown

Critical

0

High

0

Medium

2

Low

0

Affected version ranges

≤ 1.0.2

Also matched as (raw): jd-wiki

Top vulnerabilities

CVE-2007-3130Multiple PHP remote file inclusion vulnerabilities in the OpenWiki (formerly JD-Wiki) component (com_jd-wiki) 1.0.2, and possibly earlier, for Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to (1) dwpage.php or (2) wantedpages.php, different vectors than CVE-2006-4074. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVE-2006-4074PHP remote file inclusion vulnerability in lib/tpl/default/main.php in the JD-Wiki Component (com_jd-wiki) 1.0.2 and earlier for Joomla!, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.

View vendor →Open in catalog with product filter →