CVE-2010-1195

描述

Cross-site scripting (XSS) vulnerability in the htmlscrubber component in ikiwiki 2.x before 2.53.5 and 3.x before 3.20100312 allows remote attackers to inject arbitrary web script or HTML via a crafted data:image/svg+xml URI.

受影響套件(2)

• Debian/ikiwikifrom 0, < 3.20100312
• Debian/ikiwikifrom 0, < 2.53.5

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-1195