• info
• discussion
• exploit
• solution
• references

PmWiki CVE-2006-2840 Cross-Site Scripting Vulnerability

PmWiki is prone to a cross-site scripting vulnerability. Cross-site scripting (XSS) vulnerability in (1) uploads.php and (2) "url links" in PmWiki 2.1.6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.