5 matches found
DokuWiki - Cross-Site Scripting
DokuWiki through 2017-02-19b contains a cross-site scripting vulnerability in the DATEAT parameter to doku.php which allows an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based...
Linux Distros Unpatched Vulnerability : CVE-2017-12583
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DokuWiki through 2017-02-19b has XSS in the at parameter aka the DATEAT variable to doku.php. CVE-2017-12583 Note that Nessus relies on the presence of the...
CVE-2017-12583
DokuWiki through 2017-02-19b has XSS in the at parameter aka the DATEAT variable to doku.php...
CVE-2017-12583
DokuWiki (affected up to 2017-02-19b) has a cross-site scripting vulnerability in the DATE_AT parameter to doku.php. The issue allows an attacker to inject arbitrary JavaScript into a victim’s browser, potentially stolen cookies or session data. Exploitation details are consistent across multiple...
CVE-2017-12583
DokuWiki through 2017-02-19b has XSS in the at parameter aka the DATEAT variable to doku.php...