A cross-site scripting (XSS) and cross-site request forgery (CSRF) flaws were found in the way DokuWiki, a standards compliant, simple to use Wiki, performed sanitization of the 'target' parameter when preprocessing edit form data. A remote attacker could provide a specially-crafted URL, which once visited by a valid DokuWiki user would lead to arbitrary HTML or web script execution in the context of logged in DokuWiki user. References: [1] https://secunia.com/advisories/48848/ [2] http://ircrash.com/uploads/dokuwiki.txt [3] https://bugs.gentoo.org/show_bug.cgi?id=412891 Discovered by : Khashayar Fereidani Proof of Concept URL: http://sitename/doku.php?do=edit&id=S9F8W2A&target=<script>alert(123)</script>
Upstream bug report for the XSS issue: [4] http://bugs.dokuwiki.org/index.php?do=details&task_id=2487 Upstream bug report for the CSRF issue: [5] http://bugs.dokuwiki.org/index.php?do=details&task_id=2488
CVE Request: [6] http://www.openwall.com/lists/oss-security/2012/04/22/4
This issue affects the versions of the dokuwiki package, as shipped with Fedora EPEL 5 and Fedora EPEL 6. Please schedule an update. -- This issue affects the versions of the dokuwiki package, as shipped with Fedora release of 15 and 16. Please schedule an update.
Created dokuwiki tracking bugs for this issue Affects: fedora-all [bug 815123] Affects: epel-all [bug 815124]
(In reply to comment #1) The CVE identifier of CVE-2012-2129 has been assigned to the XSS issue (upstream bug #2487): > Upstream bug report for the XSS issue: > [4] http://bugs.dokuwiki.org/index.php?do=details&task_id=2487 > and identifier of CVE-2012-2128 to the CSRF / XSRF issue (upstream bug #2488): > Upstream bug report for the CSRF issue: > [5] http://bugs.dokuwiki.org/index.php?do=details&task_id=2488 http://www.openwall.com/lists/oss-security/2012/04/23/1
dokuwiki-0-0.11.20110525.a.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report.
dokuwiki-0-0.11.20110525.a.el5 has been pushed to the Fedora EPEL 5 stable repository. If problems still persist, please make note of it in this bug report.
dokuwiki-0-0.9.20110525.a.el6 has been pushed to the Fedora EPEL 6 stable repository. If problems still persist, please make note of it in this bug report.
dokuwiki-0-0.10.20110525.a.fc16 has been pushed to the Fedora 16 stable repository. If problems still persist, please make note of it in this bug report.
dokuwiki-0-0.10.20110525.a.fc15 has been pushed to the Fedora 15 stable repository. If problems still persist, please make note of it in this bug report.