CVE-2007-5295

Wikepage Opus 13 2007.2 - Cross-Site Scripting via PageContent or PageName Parameter

Title source: llm
STIX 2.1

Description

Multiple cross-site scripting (XSS) vulnerabilities in index.php in (a) Wikepage Opus 13 2007.2 and (b) TipiWiki 2 allow remote attackers to inject arbitrary web script or HTML via the (1) PageContent and (2) PageName parameters.

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/36988
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/38635
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/3424
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/38634

Scores

EPSS 0.0106
EPSS Percentile 60.6%

Details

CWE
CWE-79 CWE-94
Status published
Products (1)
wikepage/opus 13_2007.2
Published Oct 09, 2007
Tracked Since Feb 18, 2026