Show filters
6 Total Results
Displaying 1-6 of 6
Sort by:
Attacker Value
Unknown
CVE-2024-30544
Disclosure Date: June 09, 2024 (last updated November 06, 2024)
Missing Authorization vulnerability in UPQODE Whizzy.This issue affects Whizzy: from n/a through 1.1.18.
0
Attacker Value
Unknown
CVE-2024-30543
Disclosure Date: March 31, 2024 (last updated January 05, 2025)
Authorization Bypass Through User-Controlled Key vulnerability in UPQODE Whizz.This issue affects Whizzy: from n/a through 1.1.18.
0
Attacker Value
Unknown
CVE-2007-1774
Disclosure Date: March 30, 2007 (last updated October 04, 2023)
Multiple cross-site scripting (XSS) vulnerabilities in aBitWhizzy allow remote attackers to inject arbitrary web script or HTML via the d parameter to (1) whizzery/whizzypic.php or (2) whizzery/whizzylink.php.
0
Attacker Value
Unknown
CVE-2007-1773
Disclosure Date: March 30, 2007 (last updated October 04, 2023)
Multiple directory traversal vulnerabilities in aBitWhizzy allow remote attackers to list arbitrary directories via a .. (dot dot) in the d parameter to (1) whizzery/whizzypic.php or (2) whizzery/whizzylink.php, different vectors than CVE-2006-6384.
0
Attacker Value
Unknown
CVE-2006-6384
Disclosure Date: December 07, 2006 (last updated October 04, 2023)
Absolute path traversal vulnerability in abitwhizzy.php before 20061204 allows remote attackers to read arbitrary files via an absolute pathname in the Filename text window (f parameter), a variant of CVE-2006-6084.
0
Attacker Value
Unknown
CVE-2006-6084
Disclosure Date: November 24, 2006 (last updated October 04, 2023)
Directory traversal vulnerability in abitwhizzy.php in aBitWhizzy allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter. NOTE: some of these details are obtained from third party information.
0
