FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

ikiwiki -- XSS vulnerability

Affected packages
ikiwiki < 3.20160509

Details

VuXML ID 0297b260-2b3b-11e6-ae88-002590263bf5
Discovery 2016-05-04
Entry 2016-06-05

Mitre reports:

Cross-site scripting (XSS) vulnerability in the cgierror function in CGI.pm in ikiwiki before 3.20160506 might allow remote attackers to inject arbitrary web script or HTML via unspecified vectors involving an error message.

[source]

References

CVE Name CVE-2016-4561
FreeBSD PR ports/209593

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.