CVE-2012-0283

EPSS 0.52%

Published: 7/13/2012Modified: 5/27/2026

Also known as:DEBIAN-CVE-2012-0283

Description

Cross-site scripting (XSS) vulnerability in the tpl_mediaFileList function in inc/template.php in DokuWiki before 2012-01-25b allows remote attackers to inject arbitrary web script or HTML via the ns parameter in a medialist action to lib/exe/ajax.php.

Affected packages (1)

Debian/dokuwikifrom 0, < 0.0.20120125b-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-0283