CVE-2013-6047

Ikiwiki Hosting < 0.20130926 - XSS

Title source: rule

Description

Multiple cross-site scripting (XSS) vulnerabilities in the site creation interface in ikiwiki-hosting before 0.20131025 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (4)

[Various Sources] http://packages.qa.debian.org/i/ikiwiki-hosting/news/20131025T224825Z.html

[Mailing List] http://seclists.org/oss-sec/2013/q4/180

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/88334

[Third Party Advisory, VDB Entry] http://osvdb.org/99012

Scores

EPSS 0.0029

EPSS Percentile 51.7%

Details

CWE

CWE-79

Status published

Products (15)

ikiwiki_hosting_project/ikiwiki_hosting < 0.20130926

ikiwiki_hosting_project/ikiwiki_hosting

... and 5 more

Published Feb 25, 2014

Tracked Since Feb 18, 2026