Cross-site scripting (XSS) vulnerability in the tpl_mediaFileList function in inc/template.php in DokuWiki before 2012-01-25b allows remote attackers to inject arbitrary web script or HTML via the ns parameter in a medialist action to lib/exe/ajax.php.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: flexera
Published: 2012-07-13T21:00:00
Updated: 2012-07-25T09:00:00
Reserved: 2011-12-30T00:00:00
Link: CVE-2012-0283
JSON object: View
NVD Information
Status : Modified
Published: 2012-07-13T21:55:02.297
Modified: 2013-08-22T03:50:41.290
Link: CVE-2012-0283
JSON object: View
Redhat Information
No data.
CWE