Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2011-2510

Published: 14/07/2011 Updated: 29/08/2017
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Dokuwiki

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in the RSS embedding feature in DokuWiki prior to 2011-05-25a Rincewind allows remote malicious users to inject arbitrary web script or HTML via a link.

Vulnerable Product Search on Vulmon Subscribe to Product

dokuwiki dokuwiki 2006-03-09

dokuwiki dokuwiki 2006-03-05

dokuwiki dokuwiki 2009-02-14b

dokuwiki dokuwiki 2008-05-05

dokuwiki dokuwiki 2005-07-13

dokuwiki dokuwiki 2005-07-01

dokuwiki dokuwiki

dokuwiki dokuwiki 2009-12-25c

dokuwiki dokuwiki 2005-09-22

dokuwiki dokuwiki 2005-09-19

dokuwiki dokuwiki 2007-06-26

dokuwiki dokuwiki 2006-11-06

Vendor Advisories

Debian Security Advisories: DSA-2320-1 dokuwiki -- regression fix
The DokuWiki update included in Debian Lenny 509 to address a cross site scripting issue (CVE-2011-2510) had a regression rendering links to external websites broken This update corrects that regression For the oldstable distribution (lenny), this problem has been fixed in version 0020080505-4+lenny4 We recommend that you upgrade your dokuwi ...

References

CWE-79http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062380.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=717146http://www.certa.ssi.gouv.fr/site/CERTA-2011-AVI-366/CERTA-2011-AVI-366.htmlhttp://www.openwall.com/lists/oss-security/2011/06/29/13http://www.freelists.org/post/dokuwiki/Hotfix-Release-20110525a-Rincewindhttp://secunia.com/advisories/45009http://www.openwall.com/lists/oss-security/2011/06/28/5http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062389.htmlhttp://secunia.com/advisories/45190http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631818http://www.dokuwiki.org/changeshttp://www.securityfocus.com/bid/48364http://www.debian.org/security/2011/dsa-2320http://security.gentoo.org/glsa/glsa-201301-07.xmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/68122https://nvd.nist.govhttps://www.debian.org/security/./dsa-2320
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693CVE-2024-30851CVE-2024-34460CVE-2024-2887localCVE-2024-27956remote code executionCVE-2024-34475privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook