CVE-2007-5295
Wikepage Opus 13 2007.2 - Cross-Site Scripting via PageContent or PageName Parameter
Title source: llmDescription
Multiple cross-site scripting (XSS) vulnerabilities in index.php in (a) Wikepage Opus 13 2007.2 and (b) TipiWiki 2 allow remote attackers to inject arbitrary web script or HTML via the (1) PageContent and (2) PageName parameters.
References (5)
Core 5
Core References
Various Sources x_refsource_misc
http://pridels-team.blogspot.com/2007/10/wikepage-xss-vuln.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/36988
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/38635
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/3424
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/38634
Scores
EPSS
0.0106
EPSS Percentile
60.6%
Details
CWE
CWE-79
CWE-94
Status
published
Products (1)
wikepage/opus
13_2007.2
Published
Oct 09, 2007
Tracked Since
Feb 18, 2026