MidnightBSD

Advisories for sofawiki_project

CVE-2023-29720

SofaWiki <=3.8.9 is vulnerable to Cross Site Scripting (XSS) via index.php.

Products Affected

Vendor Product Version
sofawiki_project sofawiki *
CVE-2023-29721

SofaWiki <= 3.8.9 has a file upload vulnerability that leads to command execution.

Products Affected

Vendor Product Version
sofawiki_project sofawiki *