FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Dokuwiki -- cross site scripting vulnerability

Affected packages
dokuwiki < 20120125_1

Details

VuXML ID a04247f1-8d9c-11e1-93c7-00215c6a37bb
Discovery 2012-04-17
Entry 2012-04-23

Andy Webber reports:

Add User appears to be vulnerable to Cross Site Request Forgery (CSRF/XSRF).

References

CVE Name CVE-2012-2128
CVE Name CVE-2012-2129