Wikepage · Wikepage Opus · CVE-2008-1956
**Name of the Vulnerable Software and Affected Versions**
Wikepage Opus version 13 2007.2
**Description**
A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved by manipulating the `wiki` parameter in the index.php file.
**Recommendations**
For version 13 2007.2, consider restricting access to the index.php file until a fix is available, and avoid using the `wiki` parameter in this file to minimize the risk of exploitation.