Cross-site scripting flaw in the handling of the openid_identifier parameterhas been fixed in ikiwiki: http://source.ikiwiki.branchable.com/?p=source.git;a=commit;h=18dfba868fe2fb9c64706b2123eb0b3a3ce66a77 CVE request sent to oss-security.
Created ikiwiki tracking bugs for this issue: Affects: fedora-all [bug 1207211] Affects: epel-all [bug 1207212]
ikiwiki-3.20150329-1.fc22 has been pushed to the Fedora 22 stable repository. If problems still persist, please make note of it in this bug report.
ikiwiki-3.20150329-1.fc21 has been pushed to the Fedora 21 stable repository. If problems still persist, please make note of it in this bug report.
ikiwiki-3.20150329-1.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report.
ikiwiki-3.20150329-1.el6 has been pushed to the Fedora EPEL 6 stable repository. If problems still persist, please make note of it in this bug report.