CVE-2016-4561

2016-05-1019:00:00

debian

www.cve.org

AI Score

Confidence

High

EPSS

0.002

Percentile

51.6%

JSON

Cross-site scripting (XSS) vulnerability in the cgierror function in CGI.pm in ikiwiki before 3.20160506 might allow remote attackers to inject arbitrary web script or HTML via unspecified vectors involving an error message.

References

ikiwiki.info/security/#index43h2

source.ikiwiki.branchable.com/?p=source.git%3Ba=commitdiff%3Bh=32ef584dc5abb6ddb9f794f94ea0b2934967bba7

www.debian.org/security/2016/dsa-3571