| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-33588 | WordPress basepress plugin <= 2.16.1 - Broken Access Control vulnerability | codeSavory | Knowledge Base documentation & wiki plugin – BasePress | Medium | 5.4 | 2024-04-29 12:39:18 | Deep Dive |
| CVE-2024-33590 | WordPress basepress plugin <= 2.16.1 - Server Side Request Forgery (SSRF) vulnerability | codeSavory | Knowledge Base documentation & wiki plugin – BasePress | Medium | 5.0 | 2024-04-29 10:14:06 | Deep Dive |
| CVE-2024-28865 | django-wiki denial of service via regular expression | django-wiki | django-wiki | High | 7.5 | 2024-03-18 21:54:00 | Deep Dive |
| CVE-2023-50822 | WordPress Currency Converter Widget Plugin <= 3.0.2 is vulnerable to Cross Site Scripting (XSS) | Currency.Wiki | Currency Converter Widget – Exchange Rates | Medium | 6.5 | 2023-12-21 14:33:07 | Deep Dive |
| CVE-2023-47549 | WordPress EazyDocs Plugin <= 2.3.3 is vulnerable to Cross Site Scripting (XSS) | spider-themes | EazyDocs – Most Powerful Knowledge base, wiki, Documentation Builder Plugin (easy docs, knowledgebase) | Medium | 6.8 | 2023-11-14 20:39:53 | Deep Dive |
| CVE-2022-1681 | Authentication Bypass Using an Alternate Path or Channel in requarks/wiki | requarks | requarks/wiki | 高危 | - | 2022-05-12 07:45:14 | Deep Dive |
| CVE-2022-23654 | Improper write access check in Requarks/wiki | Requarks | wiki | High | 8.1 | 2022-02-22 20:05:11 | Deep Dive |
| CVE-2021-25993 | Requarks wiki.js - Stored Cross-Site Scripting (XSS) in markdown editor | Requarks | wiki | Medium | 5.4 | 2021-12-29 16:50:10 | Deep Dive |
| CVE-2021-43855 | Stored XSS via SVG in Requarks/wiki | Requarks | wiki | High | 8.2 | 2021-12-27 18:05:16 | Deep Dive |
| CVE-2021-43856 | Stored XSS in non-image uploads in Requarks/wiki | Requarks | wiki | High | 8.2 | 2021-12-27 18:05:10 | Deep Dive |
| CVE-2021-43842 | Stored XSS via SVG file upload in Wiki.js | Requarks | wiki | Medium | 5.4 | 2021-12-20 22:30:11 | Deep Dive |
| CVE-2021-43800 | Asset directory traversal with some storage modules on Windows | Requarks | wiki | High | 7.5 | 2021-12-06 18:50:10 | Deep Dive |
| CVE-2021-25986 | Django-wiki - Stored Cross-Site Scripting (XSS) in Notifications Section | Django-wiki | Django-wiki | Medium | 5.4 | 2021-11-23 19:17:08 | Deep Dive |
| CVE-2021-24470 | Yada Wiki < 3.4.1 - Contributor+ Stored XSS | Unknown | Yada Wiki | 中危 | - | 2021-08-02 10:32:12 | Deep Dive |
| CVE-2021-21383 | XSS in Wiki.js | Requarks | wiki | High | 7.6 | 2021-03-18 17:10:16 | Deep Dive |
| CVE-2020-15274 | Stored XSS via search result in Wiki.js | Requarks | wiki.js | Medium | 5.8 | 2020-10-26 18:35:19 | Deep Dive |
| CVE-2020-15236 | Directory Traversal in Wiki.js | Requarks | wiki | High | 8.6 | 2020-10-05 14:55:12 | Deep Dive |
| CVE-2020-15179 | HTML Injection in ScratchSig | InternationalScratchWiki | wiki-scratchsig | High | 8.0 | 2020-09-15 18:10:13 | Deep Dive |
| CVE-2020-4052 | Stored XSS through template injection in Wiki.js | Requarks.io | Wiki.js | Medium | 6.3 | 2020-06-16 21:55:15 | Deep Dive |
| CVE-2020-11051 | XSS in Wiki.js | Requarks | Wiki.js | Medium | 6.9 | 2020-05-05 20:45:12 | Deep Dive |