First published: Sun Mar 29 2015(Updated: )
Cross-site scripting (XSS) vulnerability in templates/openid-selector.tmpl in ikiwiki before 3.20150329 allows remote attackers to inject arbitrary web script or HTML via the openid_identifier parameter in a verify action to ikiwiki.cgi.
Credit: security@debian.org
Affected Software | Affected Version | How to fix |
---|---|---|
Ikiwiki Ikiwiki | <3.20150329 | |
Fedoraproject Fedora | =20 | |
Fedoraproject Fedora | =21 | |
Fedoraproject Fedora | =22 | |
redhat/ikiwiki | <3.20150329 | 3.20150329 |
debian/ikiwiki | 3.20200202.3-1 3.20200202.4-2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.