| Bug | Description |
|---|
| TEMP-0000000-673AE0 | ikiwiki allows web user to edit images and other non-page format files in the wiki |
| CVE-2019-9187 | ikiwiki before 3.20170111.1 and 3.2018x and 3.2019x before 3.20190228 ... |
| CVE-2017-0356 | A flaw, similar to to CVE-2016-9646, exists in ikiwiki before 3.201701 ... |
| CVE-2016-10026 | ikiwiki 3.20161219 does not properly check if a revision changes the a ... |
| CVE-2016-9646 | ikiwiki before 3.20161229 incorrectly called the CGI::FormBuilder->fie ... |
| CVE-2016-9645 | The fix for ikiwiki for CVE-2016-10026 was incomplete resulting in edi ... |
| CVE-2016-4561 | Cross-site scripting (XSS) vulnerability in the cgierror function in C ... |
| CVE-2015-2793 | Cross-site scripting (XSS) vulnerability in templates/openid-selector. ... |
| CVE-2012-0220 | Multiple cross-site scripting (XSS) vulnerabilities in the meta plugin ... |
| CVE-2011-1408 | ikiwiki before 3.20110608 allows remote attackers to hijack root's tty ... |
| CVE-2011-1401 | ikiwiki before 3.20110328 does not ascertain whether the htmlscrubber ... |
| CVE-2011-0428 | Cross Site Scripting (XSS) in ikiwiki before 3.20110122 could allow re ... |
| CVE-2010-1673 | A cross-site scripting (XSS) vulnerability in ikiwiki before 3.2010111 ... |
| CVE-2010-1195 | Cross-site scripting (XSS) vulnerability in the htmlscrubber component ... |
| CVE-2009-2944 | Incomplete blacklist vulnerability in the teximg plugin in ikiwiki bef ... |
| CVE-2008-0809 | Cross-site scripting (XSS) vulnerability in the htmlscrubber in Ikiwik ... |
| CVE-2008-0808 | Cross-site scripting (XSS) vulnerability in the meta plugin in Ikiwiki ... |
| CVE-2008-0169 | Plugin/passwordauth.pm (aka the passwordauth plugin) in ikiwiki 1.34 t ... |
| CVE-2008-0165 | Cross-site request forgery (CSRF) vulnerability in Ikiwiki before 2.42 ... |