Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2006-1387

TWiki 4.0, 4.0.1, and 20010901 through 20040904 allows remote authenticated users with edit rights to cause a denial of service (infinite recursion leading to CPU and memory consumption) via INCLUDE by URL statements that form a loop, such as a page that includes itself.

  • Published: Mar 27, 2006
  • Updated: Apr 13, 2023
  • CVE: CVE-2006-1387
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4
  • AV:N/AC:L/Au:S/C:N/I:N/A:P

No CWE or OWASP classifications available.

Software From Fixed in
twiki / twiki 2004-09-02 2004-09-02.x
twiki / twiki 4.0.1 4.0.1.x
twiki / twiki 2001-09-01 2001-09-01.x
twiki / twiki 2003-02-01 2003-02-01.x
twiki / twiki 4.0 4.0.x
twiki / twiki 2001-12-01 2001-12-01.x
twiki / twiki 2004-09-04 2004-09-04.x
twiki / twiki 2004-09-01 2004-09-01.x
twiki / twiki 2004-09-03 2004-09-03.x