FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Dokuwiki -- cross site scripting vulnerability

Affected packages
		dokuwiki	<	20120125_1

Details

VuXML ID	a04247f1-8d9c-11e1-93c7-00215c6a37bb
Discovery	2012-04-17
Entry	2012-04-23

Andy Webber reports:

Add User appears to be vulnerable to Cross Site Request Forgery (CSRF/XSRF).

[source]

References

CVE Name	CVE-2012-2128
CVE Name	CVE-2012-2129

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.