CVE-2022-27637
Cross-site Scripting in PukiWiki (PukiWiki における XSS(クロスサイトスクリプティング))
Cross-site scripting vulnerability due to the inadequate tag sanitization in PukiWiki versions v1.5.3 and earlier allows remote attackers to execute an arbitrary script on the web browser of the user who accesses a specially crafted URL.
Disclosure Date
2022/08/22
Credit
stypr (@stereotype32)
Affected-Versions
PukiWiki: v1.5.1 to v1.5.3
CWE
- CWE-79
