Cross-site scripting (XSS) vulnerability in the htmlscrubber component in ikiwiki 2.x before 2.53.5 and 3.x before 3.20100312 allows remote attackers to inject arbitrary web script or HTML via a crafted data:image/svg+xml URI.
2010-03-31T18:00:00.733
2025-04-11T00:51:21.963
Deferred
CVSSv2: 4.3 (MEDIUM)
AV:N/AC:M/Au:N/C:N/I:P/A:N
8.6
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | ikiwiki | ikiwiki | 2.0 | Yes |
| Application | ikiwiki | ikiwiki | 2.1 | Yes |
| Application | ikiwiki | ikiwiki | 2.2 | Yes |
| Application | ikiwiki | ikiwiki | 2.3 | Yes |
| Application | ikiwiki | ikiwiki | 2.4 | Yes |
| Application | ikiwiki | ikiwiki | 2.5 | Yes |
| Application | ikiwiki | ikiwiki | 2.10 | Yes |
| Application | ikiwiki | ikiwiki | 2.11 | Yes |
| Application | ikiwiki | ikiwiki | 2.12 | Yes |
| Application | ikiwiki | ikiwiki | 2.13 | Yes |
| Application | ikiwiki | ikiwiki | 2.14 | Yes |
| Application | ikiwiki | ikiwiki | 2.15 | Yes |
| Application | ikiwiki | ikiwiki | 2.16 | Yes |
| Application | ikiwiki | ikiwiki | 2.17 | Yes |
| Application | ikiwiki | ikiwiki | 2.18 | Yes |
| Application | ikiwiki | ikiwiki | 2.19 | Yes |
| Application | ikiwiki | ikiwiki | 2.20 | Yes |
| Application | ikiwiki | ikiwiki | 2.30 | Yes |
| Application | ikiwiki | ikiwiki | 2.31 | Yes |
| Application | ikiwiki | ikiwiki | 2.31.1 | Yes |
| Application | ikiwiki | ikiwiki | 2.31.2 | Yes |
| Application | ikiwiki | ikiwiki | 2.31.3 | Yes |
| Application | ikiwiki | ikiwiki | 2.40 | Yes |
| Application | ikiwiki | ikiwiki | 2.41 | Yes |
| Application | ikiwiki | ikiwiki | 2.42 | Yes |
| Application | ikiwiki | ikiwiki | 2.43 | Yes |
| Application | ikiwiki | ikiwiki | 2.44 | Yes |
| Application | ikiwiki | ikiwiki | 2.45 | Yes |
| Application | ikiwiki | ikiwiki | 2.46 | Yes |
| Application | ikiwiki | ikiwiki | 2.47 | Yes |
| Application | ikiwiki | ikiwiki | 2.48 | Yes |
| Application | ikiwiki | ikiwiki | 2.49 | Yes |
| Application | ikiwiki | ikiwiki | 2.50 | Yes |
| Application | ikiwiki | ikiwiki | 2.51 | Yes |
| Application | ikiwiki | ikiwiki | 2.52 | Yes |
| Application | ikiwiki | ikiwiki | 2.53 | Yes |
| Application | ikiwiki | ikiwiki | 3.00 | Yes |
| Application | ikiwiki | ikiwiki | 3.01 | Yes |
| Application | ikiwiki | ikiwiki | 3.02 | Yes |
| Application | ikiwiki | ikiwiki | 3.03 | Yes |
| Application | ikiwiki | ikiwiki | 3.04 | Yes |
| Application | ikiwiki | ikiwiki | 3.05 | Yes |
| Application | ikiwiki | ikiwiki | 3.06 | Yes |
| Application | ikiwiki | ikiwiki | 3.07 | Yes |
| Application | ikiwiki | ikiwiki | 3.08 | Yes |
| Application | ikiwiki | ikiwiki | 3.09 | Yes |
| Application | ikiwiki | ikiwiki | 3.10 | Yes |
| Application | ikiwiki | ikiwiki | 3.11 | Yes |
| Application | ikiwiki | ikiwiki | 3.12 | Yes |
| Application | ikiwiki | ikiwiki | 3.13 | Yes |
| Application | ikiwiki | ikiwiki | 3.14 | Yes |
| Application | ikiwiki | ikiwiki | 3.141 | Yes |
| Application | ikiwiki | ikiwiki | 3.1415 | Yes |
| Application | ikiwiki | ikiwiki | 3.14159 | Yes |
| Application | ikiwiki | ikiwiki | 3.141592 | Yes |
| Application | ikiwiki | ikiwiki | 3.1415926 | Yes |
| Application | ikiwiki | ikiwiki | 3.14159265 | Yes |
| Application | ikiwiki | ikiwiki | 3.20091009 | Yes |
| Application | ikiwiki | ikiwiki | 3.20091017 | Yes |
| Application | ikiwiki | ikiwiki | 3.20091022 | Yes |
| Application | ikiwiki | ikiwiki | 3.20091023 | Yes |
| Application | ikiwiki | ikiwiki | 3.20091031 | Yes |
| Application | ikiwiki | ikiwiki | 3.20091113 | Yes |
| Application | ikiwiki | ikiwiki | 3.20091202 | Yes |
| Application | ikiwiki | ikiwiki | 3.20091218 | Yes |
| Application | ikiwiki | ikiwiki | 3.20100102.3 | Yes |
| Application | ikiwiki | ikiwiki | 3.20100122 | Yes |
| Application | ikiwiki | ikiwiki | 3.20100212 | Yes |
| Application | ikiwiki | ikiwiki | 3.20100302 | Yes |