Disclosure Date 2022/08/22

CVE-2022-27637

Cross-site Scripting in PukiWiki

PukiWiki における XSS(クロスサイトスクリプティング)

Description

Cross-site scripting vulnerability due to the inadequate tag sanitization in PukiWiki versions v1.5.3 and earlier allows remote attackers to execute an arbitrary script on the web browser of the user who accesses a specially crafted URL.