Ikiwiki Security Vulnerabilities and Issues — Ikiwiki CVE List

Lucene search

IkiwikiIkiwiki

5 matches found

CVE•added 2008/04/21 1:5 p.m.•45 views

CVE-2008-0165

Cross-site request forgery (CSRF) vulnerability in Ikiwiki before 2.42 allows remote attackers to modify user preferences, including passwords, via the (1) preferences and (2) edit forms.

4.3CVSS6.5AI score0.00242EPSS

CVE•added 2008/02/19 1:0 a.m.•44 views

CVE-2008-0808

Cross-site scripting (XSS) vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags.

4.3CVSS5.4AI score0.00475EPSS

CVE•added 2008/02/19 1:0 a.m.•39 views

CVE-2008-0809

Cross-site scripting (XSS) vulnerability in the htmlscrubber in Ikiwiki before 1.1.46 allows remote attackers to inject arbitrary web script or HTML via title contents.

4.3CVSS5.5AI score0.00329EPSS

CVE•added 2010/03/31 6:0 p.m.•36 views

CVE-2010-1195

Cross-site scripting (XSS) vulnerability in the htmlscrubber component in ikiwiki 2.x before 2.53.5 and 3.x before 3.20100312 allows remote attackers to inject arbitrary web script or HTML via a crafted data:image/svg+xml URI.

4.3CVSS5.5AI score0.0032EPSS

CVE•added 2012/05/29 8:55 p.m.•34 views

CVE-2012-0220

Multiple cross-site scripting (XSS) vulnerabilities in the meta plugin (Plugin/meta.pm) in ikiwiki before 3.20120516 allow remote attackers to inject arbitrary web script or HTML via the (1) author or (2) authorurl meta tags.

4.3CVSS5.6AI score0.00467EPSS