CVE-2010-1195: XSS
First published: Wed Mar 31 2010(Updated: )
Cross-site scripting (XSS) vulnerability in the htmlscrubber component in ikiwiki 2.x before 2.53.5 and 3.x before 3.20100312 allows remote attackers to inject arbitrary web script or HTML via a crafted data:image/svg+xml URI.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ikiwiki Hosting Project | =3.07 | |
| Ikiwiki Hosting Project | =3.14 | |
| Ikiwiki Hosting Project | =2.53 | |
| Ikiwiki Hosting Project | =3.14159 | |
| Ikiwiki Hosting Project | =3.13 | |
| Ikiwiki Hosting Project | =3.20100212 | |
| Ikiwiki Hosting Project | =3.11 | |
| Ikiwiki Hosting Project | =2.52 | |
| Ikiwiki Hosting Project | =3.09 | |
| Ikiwiki Hosting Project | =3.141 | |
| Ikiwiki Hosting Project | =2.14 | |
| Ikiwiki Hosting Project | =2.40 | |
| Ikiwiki Hosting Project | =3.20091009 | |
| Ikiwiki Hosting Project | =2.49 | |
| Ikiwiki Hosting Project | =3.04 | |
| Ikiwiki Hosting Project | =2.12 | |
| Ikiwiki Hosting Project | =3.01 | |
| Ikiwiki Hosting Project | =3.20100102.3 | |
| Ikiwiki Hosting Project | =2.50 | |
| Ikiwiki Hosting Project | =3.1415926 | |
| Ikiwiki Hosting Project | =2.31 | |
| Ikiwiki Hosting Project | =2.42 | |
| Ikiwiki Hosting Project | =3.20100302 | |
| Ikiwiki Hosting Project | =2.0 | |
| Ikiwiki Hosting Project | =2.3 | |
| Ikiwiki Hosting Project | =2.47 | |
| Ikiwiki Hosting Project | =2.45 | |
| Ikiwiki Hosting Project | =2.17 | |
| Ikiwiki Hosting Project | =2.31.2 | |
| Ikiwiki Hosting Project | =2.41 | |
| Ikiwiki Hosting Project | =3.1415 | |
| Ikiwiki Hosting Project | =3.06 | |
| Ikiwiki Hosting Project | =3.10 | |
| Ikiwiki Hosting Project | =3.20091202 | |
| Ikiwiki Hosting Project | =2.51 | |
| Ikiwiki Hosting Project | =3.20091017 | |
| Ikiwiki Hosting Project | =2.2 | |
| Ikiwiki Hosting Project | =3.05 | |
| Ikiwiki Hosting Project | =3.20091023 | |
| Ikiwiki Hosting Project | =2.48 | |
| Ikiwiki Hosting Project | =2.5 | |
| Ikiwiki Hosting Project | =2.31.3 | |
| Ikiwiki Hosting Project | =3.20091218 | |
| Ikiwiki Hosting Project | =3.08 | |
| Ikiwiki Hosting Project | =2.31.1 | |
| Ikiwiki Hosting Project | =3.20091022 | |
| Ikiwiki Hosting Project | =2.18 | |
| Ikiwiki Hosting Project | =3.20091113 | |
| Ikiwiki Hosting Project | =3.20091031 | |
| Ikiwiki Hosting Project | =3.12 | |
| Ikiwiki Hosting Project | =2.15 | |
| Ikiwiki Hosting Project | =2.11 | |
| Ikiwiki Hosting Project | =2.30 | |
| Ikiwiki Hosting Project | =2.1 | |
| Ikiwiki Hosting Project | =3.20100122 | |
| Ikiwiki Hosting Project | =2.19 | |
| Ikiwiki Hosting Project | =3.14159265 | |
| Ikiwiki Hosting Project | =3.03 | |
| Ikiwiki Hosting Project | =3.141592 | |
| Ikiwiki Hosting Project | =2.44 | |
| Ikiwiki Hosting Project | =2.4 | |
| Ikiwiki Hosting Project | =2.16 | |
| Ikiwiki Hosting Project | =3.00 | |
| Ikiwiki Hosting Project | =2.13 | |
| Ikiwiki Hosting Project | =3.02 | |
| Ikiwiki Hosting Project | =2.43 | |
| Ikiwiki Hosting Project | =2.20 | |
| Ikiwiki Hosting Project | =2.46 | |
| Ikiwiki Hosting Project | =2.10 | |
| =2.0 | ||
| =2.1 | ||
| =2.2 | ||
| =2.3 | ||
| =2.4 | ||
| =2.5 | ||
| =2.10 | ||
| =2.11 | ||
| =2.12 | ||
| =2.13 | ||
| =2.14 | ||
| =2.15 | ||
| =2.16 | ||
| =2.17 | ||
| =2.18 | ||
| =2.19 | ||
| =2.20 | ||
| =2.30 | ||
| =2.31 | ||
| =2.31.1 | ||
| =2.31.2 | ||
| =2.31.3 | ||
| =2.40 | ||
| =2.41 | ||
| =2.42 | ||
| =2.43 | ||
| =2.44 | ||
| =2.45 | ||
| =2.46 | ||
| =2.47 | ||
| =2.48 | ||
| =2.49 | ||
| =2.50 | ||
| =2.51 | ||
| =2.52 | ||
| =2.53 | ||
| =3.00 | ||
| =3.01 | ||
| =3.02 | ||
| =3.03 | ||
| =3.04 | ||
| =3.05 | ||
| =3.06 | ||
| =3.07 | ||
| =3.08 | ||
| =3.09 | ||
| =3.10 | ||
| =3.11 | ||
| =3.12 | ||
| =3.13 | ||
| =3.14 | ||
| =3.141 | ||
| =3.1415 | ||
| =3.14159 | ||
| =3.141592 | ||
| =3.1415926 | ||
| =3.14159265 | ||
| =3.20091009 | ||
| =3.20091017 | ||
| =3.20091022 | ||
| =3.20091023 | ||
| =3.20091031 | ||
| =3.20091113 | ||
| =3.20091202 | ||
| =3.20091218 | ||
| =3.20100102.3 | ||
| =3.20100122 | ||
| =3.20100212 | ||
| =3.20100302 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2010-1195?
CVE-2010-1195 is classified with a medium severity level, primarily due to its potential for cross-site scripting vulnerabilities.
How do I fix CVE-2010-1195?
To mitigate CVE-2010-1195, upgrade to ikiwiki version 2.53.5 or higher for 2.x, or 3.20100312 or higher for 3.x.
What types of systems are affected by CVE-2010-1195?
CVE-2010-1195 affects ikiwiki versions prior to 2.53.5 in the 2.x branch and versions prior to 3.20100312 in the 3.x branch.
What kind of attack does CVE-2010-1195 enable?
CVE-2010-1195 enables remote attackers to inject arbitrary web scripts or HTML through crafted data:image/svg+xml URIs.
Is there a patch available for CVE-2010-1195?
Yes, a patch is included in the updated versions of ikiwiki, which resolves the vulnerabilities associated with CVE-2010-1195.
- agent/type
- agent/author
- agent/severity
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/first-publish-date
- agent/weakness
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/source
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/ikiwiki
- canonical/ikiwiki hosting project
- version/ikiwiki hosting project/3.07
- version/ikiwiki hosting project/3.14
- version/ikiwiki hosting project/2.53
- version/ikiwiki hosting project/3.14159
- version/ikiwiki hosting project/3.13
- version/ikiwiki hosting project/3.20100212
- version/ikiwiki hosting project/3.11
- version/ikiwiki hosting project/2.52
- version/ikiwiki hosting project/3.09
- version/ikiwiki hosting project/3.141
- version/ikiwiki hosting project/2.14
- version/ikiwiki hosting project/2.40
- version/ikiwiki hosting project/3.20091009
- version/ikiwiki hosting project/2.49
- version/ikiwiki hosting project/3.04
- version/ikiwiki hosting project/2.12
- version/ikiwiki hosting project/3.01
- version/ikiwiki hosting project/3.20100102.3
- version/ikiwiki hosting project/2.50
- version/ikiwiki hosting project/3.1415926
- version/ikiwiki hosting project/2.31
- version/ikiwiki hosting project/2.42
- version/ikiwiki hosting project/3.20100302
- version/ikiwiki hosting project/2.0
- version/ikiwiki hosting project/2.3
- version/ikiwiki hosting project/2.47
- version/ikiwiki hosting project/2.45
- version/ikiwiki hosting project/2.17
- version/ikiwiki hosting project/2.31.2
- version/ikiwiki hosting project/2.41
- version/ikiwiki hosting project/3.1415
- version/ikiwiki hosting project/3.06
- version/ikiwiki hosting project/3.10
- version/ikiwiki hosting project/3.20091202
- version/ikiwiki hosting project/2.51
- version/ikiwiki hosting project/3.20091017
- version/ikiwiki hosting project/2.2
- version/ikiwiki hosting project/3.05
- version/ikiwiki hosting project/3.20091023
- version/ikiwiki hosting project/2.48
- version/ikiwiki hosting project/2.5
- version/ikiwiki hosting project/2.31.3
- version/ikiwiki hosting project/3.20091218
- version/ikiwiki hosting project/3.08
- version/ikiwiki hosting project/2.31.1
- version/ikiwiki hosting project/3.20091022
- version/ikiwiki hosting project/2.18
- version/ikiwiki hosting project/3.20091113
- version/ikiwiki hosting project/3.20091031
- version/ikiwiki hosting project/3.12
- version/ikiwiki hosting project/2.15
- version/ikiwiki hosting project/2.11
- version/ikiwiki hosting project/2.30
- version/ikiwiki hosting project/2.1
- version/ikiwiki hosting project/3.20100122
- version/ikiwiki hosting project/2.19
- version/ikiwiki hosting project/3.14159265
- version/ikiwiki hosting project/3.03
- version/ikiwiki hosting project/3.141592
- version/ikiwiki hosting project/2.44
- version/ikiwiki hosting project/2.4
- version/ikiwiki hosting project/2.16
- version/ikiwiki hosting project/3.00
- version/ikiwiki hosting project/2.13
- version/ikiwiki hosting project/3.02
- version/ikiwiki hosting project/2.43
- version/ikiwiki hosting project/2.20
- version/ikiwiki hosting project/2.46
- version/ikiwiki hosting project/2.10