6 matches found
Debian DSA-1523-1 : ikiwiki - XSS
Josh Triplett discovered that ikiwiki did not block JavaScript in URLs, leading to cross-site scripting vulnerabilities CVE-2008-0808, CVE-2008-0809 . The old stable distribution sarge did not contain an ikiwiki package. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text an...
[SECURITY] [DSA 1523-1] New ikiwiki packages fix cross-site scripting
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------- Debian Security Advisory DSA-1523-1 [email protected] http://www.debian.org/security/ Florian Weimer March 17, 2008 http://www.debian.org/security/faq -...
DSA-1523-1 ikiwiki - cross-site scripting
Bulletin has no description...
CVE-2008-0808
Cross-site scripting XSS vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags...
CVE-2008-0808
Cross-site scripting XSS vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags...
CVE-2008-0808
CVE-2008-0808 is an XSS in Ikiwiki's meta plugin, affecting Ikiwiki before 1.1.47. Exploitation could allow remote script/HTML injection via meta tags. Debian and OSV advisories reference fixed releases and urge upgrading Ikiwiki to patched versions (e.g., Debian etch 1.33.4); no exploit details ...