Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
twiki twiki 4.0.1 vulnerabilities and exploits
(subscribe to this query)
454
VMScore
CVE-2006-2942
TWiki 4.0.0, 4.0.1, and 4.0.2 allows remote malicious users to gain Twiki administrator privileges via a TWiki.TWikiRegistration form with a modified action attribute that references the Sandbox web instead of the user web, which can then be used to associate the user's logi...
Twiki Twiki 4.0.0
Twiki Twiki 4.0.1
Twiki Twiki 4.0.2
505
VMScore
CVE-2006-4294
Directory traversal vulnerability in viewfile in TWiki 4.0.0 up to and including 4.0.4 allows remote malicious users to read arbitrary files via a .. (dot dot) in the filename parameter.
Twiki Twiki 4.0.1
Twiki Twiki 4.0.2
Twiki Twiki 4.0.3
Twiki Twiki 4.0.4
Twiki Twiki 4.0.0
1 EDB exploit
755
VMScore
CVE-2006-3819
Eval injection vulnerability in the configure script in TWiki 4.0.0 up to and including 4.0.4 allows remote malicious users to execute arbitrary Perl code via an HTTP POST request containing a parameter name starting with "TYPEOF".
Twiki Twiki 4.0.2
Twiki Twiki 4.0.3
Twiki Twiki 4.0.0
Twiki Twiki 4.0.1
Twiki Twiki 4.0
Twiki Twiki 4.0.4
1 EDB exploit
409
VMScore
CVE-2007-0669
Unspecified vulnerability in Twiki 4.0.0 up to and including 4.1.0 allows local users to execute arbitrary Perl code via unknown vectors related to CGI session files.
Twiki Twiki 4.0.1
Twiki Twiki 4.0.2
Twiki Twiki 4.0.3
Twiki Twiki 4.0.4
Twiki Twiki 4.0.0
Twiki Twiki 4.0.5
Twiki Twiki 4.1.0
668
VMScore
CVE-2006-1386
The (1) rdiff and (2) preview scripts in TWiki 4.0 and 4.0.1 ignore access control settings, which allows remote malicious users to read restricted areas and access restricted content in TWiki topics.
Twiki Twiki 4.0
Twiki Twiki 4.0.1
1000
VMScore
CVE-2008-5305
Eval injection vulnerability in TWiki prior to 4.2.4 allows remote malicious users to execute arbitrary Perl code via the %SEARCH{}% variable.
Twiki Twiki 4.1.0
Twiki Twiki 4.0.5
Twiki Twiki 4.2.2
Twiki Twiki 4.0.4
Twiki Twiki 4.0.3
Twiki Twiki 4.2.1
Twiki Twiki 4.2.0
Twiki Twiki 4.0.2
Twiki Twiki 4.0.1
Twiki Twiki 4.1.2
Twiki Twiki 4.1.1
Twiki Twiki 4.0.0
Twiki Twiki
1 EDB exploit
690
VMScore
CVE-2008-3195
Directory traversal vulnerability in bin/configure in TWiki prior to 4.2.3, when a certain step in the installation guide is skipped, allows remote malicious users to read arbitrary files via a query string containing a .. (dot dot) in the image variable, and execute arbitrary fi...
Twiki Twiki 4.1.0
Twiki Twiki 4.0.5
Twiki Twiki
Twiki Twiki 4.0.4
Twiki Twiki 4.0.3
Twiki Twiki 4.1.1
Twiki Twiki 4.2.0
Twiki Twiki 4.0.0
Twiki Twiki 4.0
Twiki Twiki 4.1.2
Twiki Twiki 4.2.1
Twiki Twiki 4.0.2
Twiki Twiki 4.0.1
2 EDB exploits
605
VMScore
CVE-2009-4898
Cross-site request forgery (CSRF) vulnerability in TWiki prior to 4.3.2 allows remote malicious users to hijack the authentication of arbitrary users for requests that update pages, as demonstrated by a URL for a save script in the ACTION attribute of a FORM element, in conjuncti...
Twiki Twiki 4.0.5
Twiki Twiki 4.0.4
Twiki Twiki 4.0.3
Twiki Twiki 4.0.2
Twiki Twiki 4.2.4
Twiki Twiki 4.1.2
Twiki Twiki
Twiki Twiki 4.1.0
Twiki Twiki 4.0.1
Twiki Twiki 4.2.3
Twiki Twiki 4.2.2
Twiki Twiki 4.2.1
Twiki Twiki 4.2.0
Twiki Twiki 4.3.0
Twiki Twiki 4.1.1
Twiki Twiki 4.0.0
440
VMScore
CVE-2011-3010
Multiple cross-site scripting (XSS) vulnerabilities in TWiki prior to 5.1.0 allow remote malicious users to inject arbitrary web script or HTML via (1) the newtopic parameter in a WebCreateNewTopic action, related to the TWiki.WebCreateNewTopicTemplate topic; or (2) the query str...
Twiki Twiki 4.5.0
Twiki Twiki 4.3.0
Twiki Twiki 4.1.1
Twiki Twiki 4.0.5
Twiki Twiki 4.0.0
Twiki Twiki
Twiki Twiki 5.0.0
Twiki Twiki 4.0.4
Twiki Twiki 4.0.3
Twiki Twiki 4.0.2
Twiki Twiki 4.0.1
Twiki Twiki 4.2.3
Twiki Twiki 4.2.2
Twiki Twiki 4.2.1
Twiki Twiki 4.2.0
Twiki Twiki 4.3.2
Twiki Twiki 4.2.4
Twiki Twiki 4.1.2
Twiki Twiki 4.1.0
Twiki Twiki 4.0
2 EDB exploits
435
VMScore
CVE-2011-1838
Multiple cross-site scripting (XSS) vulnerabilities in TemplateLogin.pm in TWiki prior to 5.0.2 allow remote malicious users to inject arbitrary web script or HTML via the origurl parameter to a (1) view script or (2) login script.
Twiki Twiki 4.1.2
Twiki Twiki 4.2.3
Twiki Twiki 4.0.4
Twiki Twiki 4.0.3
Twiki Twiki 4.2.0
Twiki Twiki
Twiki Twiki 5.0.0
Twiki Twiki 4.1.0
Twiki Twiki 4.0.5
Twiki Twiki 4.2.1
Twiki Twiki 4.1.1
Twiki Twiki 4.3.1
Twiki Twiki 4.2.4
Twiki Twiki 4.0.2
Twiki Twiki 4.0.1
Twiki Twiki 4.3.0
Twiki Twiki 4.3.2
Twiki Twiki 4.0.0
Twiki Twiki 4.2.2
Twiki Twiki 4.5.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »