FreeBSD : Dokuwiki -- XSS vulnerability (0b535cd0-9b90-11e0-800a-00215c6a37bb)

This script is Copyright (C) 2011-2014 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

Dokuwiki reports :

We just released a Hotfix Release '2011-05-25a Rincewind'. It contains
the following changes :

Security fix for a Cross Site Scripting vulnerability. Malicious users
could abuse DokuWiki's RSS embedding mechanism to create links
containing arbitrary JavaScript. Note: this security problem is
present in at least Anteater and Rincewind but probably in older
releases as well.

See also :

http://www.nessus.org/u?1a60326a
http://www.nessus.org/u?70363d1a

Solution :

Update the affected package.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 55281 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now