Information on source package ikiwiki

Available versions

ReleaseVersion
jessie3.20141016.4
jessie (security)3.20141016.4+deb8u1
stretch (security)3.20170111.1
buster3.20190228-1
bullseye3.20190228-1
sid3.20190228-1

Resolved issues

BugDescription
TEMP-0000000-673AE0ikiwiki allows web user to edit images and other non-page format files in the wiki
CVE-2019-9187ikiwiki before 3.20170111.1 and 3.2018x and 3.2019x before 3.20190228 ...
CVE-2017-0356A flaw, similar to to CVE-2016-9646, exists in ikiwiki before 3.201701 ...
CVE-2016-9646ikiwiki before 3.20161229 incorrectly called the CGI::FormBuilder-> ...
CVE-2016-9645The fix for ikiwiki for CVE-2016-10026 was incomplete resulting in edi ...
CVE-2016-4561Cross-site scripting (XSS) vulnerability in the cgierror function in C ...
CVE-2016-10026ikiwiki 3.20161219 does not properly check if a revision changes the a ...
CVE-2015-2793cross-site scripting via openid_identifier
CVE-2012-0220Multiple cross-site scripting (XSS) vulnerabilities in the meta plugin ...
CVE-2011-1408ikiwiki tty hijacking vulnerability
CVE-2011-1401ikiwiki before 3.20110328 does not ascertain whether the htmlscrubber ...
CVE-2011-0428
CVE-2010-1673ikiwiki xss due to insufficient html scrubbing
CVE-2010-1195Cross-site scripting (XSS) vulnerability in the htmlscrubber component ...
CVE-2009-2944Incomplete blacklist vulnerability in the teximg plugin in ikiwiki bef ...
CVE-2008-0809Cross-site scripting (XSS) vulnerability in the htmlscrubber in Ikiwik ...
CVE-2008-0808Cross-site scripting (XSS) vulnerability in the meta plugin in Ikiwiki ...
CVE-2008-0169Plugin/passwordauth.pm (aka the passwordauth plugin) in ikiwiki 1.34 t ...
CVE-2008-0165Cross-site request forgery (CSRF) vulnerability in Ikiwiki before 2.42 ...

Security announcements

DSA / DLADescription
DLA-1716-1ikiwiki - security update
DSA-4399-1ikiwiki - security update
DLA-812-1ikiwiki - security update
DSA-3760-1ikiwiki - security update
DLA-463-1ikiwiki - security update
DSA-3571-1ikiwiki - security update
DSA-2474-1ikiwiki - cross-site scripting
DSA-2214-1ikiwiki - missing input validation
DSA-2214-1ikiwiki - missing input validation
DSA-2020-1ikiwiki - cross-site scripting
DSA-1875-1ikiwiki - information disclosure
DSA-1553-1ikiwiki - cross-site request forgery
DSA-1523-1ikiwiki - cross-site scripting

Search for package or bug name: Reporting problems