Arbitrary Script Injection in WackoWiki 3.5 TextSearch phrase Parameter

Arbitrary Script Injection in WackoWiki 3.5 TextSearch phrase Parameter

CVE-2004-2624 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in "TextSearch" in WackoWiki 3.5 allows remote attackers to inject arbitrary web script or HTML via the "phrase" parameter.

Learn more about our Web App Pen Testing.