FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-12-24 11:27:39 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
a04247f1-8d9c-11e1-93c7-00215c6a37bbDokuwiki -- cross site scripting vulnerability

Andy Webber reports:

Add User appears to be vulnerable to Cross Site Request Forgery (CSRF/XSRF).


Discovery 2012-04-17
Entry 2012-04-23
dokuwiki
< 20120125_1

CVE-2012-2128
CVE-2012-2129
2fe4b57f-d110-11e1-ac76-10bf48230856Dokuwiki -- cross site scripting vulnerability

Secunia Research reports:

Secunia Research has discovered a vulnerability in DokuWiki, which can be exploited by malicious people to conduct cross-site scripting attacks.

Input passed to the "ns" POST parameter in lib/exe/ajax.php (when "call" is set to "medialist" and "do" is set to "media") is not properly sanitised within the "tpl_mediaFileList()" function in inc/template.php before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.


Discovery 2012-07-13
Entry 2012-07-18
dokuwiki
< 20120125_2

http://secunia.com/advisories/49196/
CVE-2012-0283