Multiple cross-site scripting (XSS) vulnerabilities in the site creation interface in ikiwiki-hosting before 0.20131025 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| ikiwiki_hosting_project | ikiwiki_hosting | 0.20110401 |
| ikiwiki_hosting_project | ikiwiki_hosting | 0.20111005 |
| ikiwiki_hosting_project | ikiwiki_hosting | 0.20110608 |
| ikiwiki_hosting_project | ikiwiki_hosting | 0.20120526 |
| ikiwiki_hosting_project | ikiwiki_hosting | 0.20110420 |
| ikiwiki_hosting_project | ikiwiki_hosting | 0.20130504 |
| ikiwiki_hosting_project | ikiwiki_hosting | 0.20120131 |
| ikiwiki_hosting_project | ikiwiki_hosting | 0.20110926 |
| ikiwiki_hosting_project | ikiwiki_hosting | 0.20110515 |
| ikiwiki_hosting_project | ikiwiki_hosting | 0.20120425 |
| ikiwiki_hosting_project | ikiwiki_hosting | 0.20120527 |
| ikiwiki_hosting_project | ikiwiki_hosting | 0.20120125 |
| ikiwiki_hosting_project | ikiwiki_hosting | * |
| ikiwiki_hosting_project | ikiwiki_hosting | 0.20110424 |