Wiki Web Help 'configpath' Parameter Remote File Include Vulnerability Network Vulnerability

Summary

Wiki Web Help is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue could allow an attacker to compromise the application and the underlying system other attacks are also possible. Wiki Web Help 0.3.11 is vulnerable other versions may also be affected.

References

http://sourceforge.net/projects/wwh/
http://wikiwebhelp.org/
http://www.securityfocus.com/bid/55387

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Apache Web Server ETag Header Information Disclosure Weakness
An Image Gallery Multiple Cross-Site Scripting Vulnerability
AdaptCMS 'init.php' Remote File Include Vulnerability
Apache CouchDB Cross Site Request Forgery Vulnerability
APC PowerChute Network Shutdown HTTP Response Splitting Vulnerability

Take action and discover your vulnerabilities