Multiple cross-site scripting (XSS) vulnerabilities in the meta plugin (Plugin/meta.pm) in ikiwiki before 3.20120516 allow remote attackers to inject arbitrary web script or HTML via the (1) author or (2) authorurl meta tags.
https://exchange.xforce.ibmcloud.com/vulnerabilities/75702
http://www.securityfocus.com/bid/53599
http://www.debian.org/security/2012/dsa-2474
http://secunia.com/advisories/49232