CVE-2016-4561

MEDIUM6.1EPSS 0.30%

ikiwiki - security update

發布日:2016/5/10修改日:2026/4/28

描述

Cross-site scripting (XSS) vulnerability in the cgierror function in CGI.pm in ikiwiki before 3.20160506 might allow remote attackers to inject arbitrary web script or HTML via unspecified vectors involving an error message.

受影響套件(3)

Debian/ikiwikifrom 0, < 3.20160506
Debian/ikiwikifrom 0, < 3.20120629.2+deb7u1
Debian/ikiwikifrom 0, < 3.20141016.3

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	MEDIUM6.1	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2016-4561