Back to bug 815122
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Jan Lieskovsky | 2012-04-22 17:09:41 UTC | CC | andrew, jpopelka | |
| Jan Lieskovsky | 2012-04-22 17:17:07 UTC | Summary | dokuwiki: XSS due improper escaping of 'target' parameter in preprocessing edit form data | dokuwiki: XSS and CSRF due improper escaping of 'target' parameter in preprocessing edit form data |
| Jan Lieskovsky | 2012-04-22 17:26:56 UTC | Depends On | 815123 | |
| Jan Lieskovsky | 2012-04-22 17:27:02 UTC | Depends On | 815124 | |
| Jan Lieskovsky | 2012-04-23 07:17:45 UTC | Summary | dokuwiki: XSS and CSRF due improper escaping of 'target' parameter in preprocessing edit form data | CVE-2012-2128 CVE-2012-2129 dokuwiki: XSS and CSRF due improper escaping of 'target' parameter in preprocessing edit form data |
| Alias | CVE-2012-2128, CVE-2012-2129 | |||
| Andrew Colin Kissa | 2012-11-12 15:28:53 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2012-11-12 10:28:53 UTC | |||
| Ján Rusnačko | 2016-01-26 12:55:19 UTC | CC | jrusnack | |
| Whiteboard | impact=moderate,public=20120417,reported=20120421,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,fedora-all/dokuwiki=affected,epel-all/dokuwiki=affected | impact=moderate,public=20120417,reported=20120421,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,fedora-all/dokuwiki=affected,epel-all/dokuwiki=affected,cwe=(CWE-352|CWE-79) | ||
| Product Security DevOps Team | 2019-09-29 12:52:21 UTC | Whiteboard | impact=moderate,public=20120417,reported=20120421,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,fedora-all/dokuwiki=affected,epel-all/dokuwiki=affected,cwe=(CWE-352|CWE-79) |
Back to bug 815122