2006-05-14-CVE-2006-2581.md

layout	advisory
title	CVE-2006-2581 (rwiki): RWiki before 2.1.1 has cross-site scripting vulnerability
comments	false
categories	rwiki
advisory	gem cve ghsa url title date description cvss_v2 unaffected_versions patched_versions related notes rwiki 2006-2581 gvhx-gj42-m28v https://web.archive.org/web/20090501134922/http://www2a.biglobe.ne.jp/~seki/ruby/rwiki.html RWiki before 2.1.1 has cross-site scripting vulnerability 2006-05-14 Cross-site scripting (XSS) vulnerability in Wiki content in RWiki 2.1.0pre1 through 2.1.0 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors. 4.3 < 2.1.0pre1 >= 2.1.1 cve ghsa url 2006-2582 wwmf-6p58-6vj2 https://nvd.nist.gov/vuln/detail/CVE-2006-2581 https://exchange.xforce.ibmcloud.com/vulnerabilities/26664 https://github.com/advisories/GHSA-wwmf-6p58-6vj2 https://github.com/advisories/GHSA-gvhx-gj42-m28v https://rubygems.org/gems/rwiki https://web.archive.org/web/20090501134922/http://www2a.biglobe.ne.jp/~seki/ruby/rwiki.html https://web.archive.org/web/20090504061152/http://pub.cozmixng.org/~the-rwiki/rw-cgi.rb?cmd=view;name=top https://web.archive.org/web/20081201080215/http://secunia.com/advisories/20264 https://web.archive.org/web/20090524010623/http://www.vupen.com/english/advisories/2006/1949 - Best references are in Japanese. - Source code link on rubygems.org goes to lucassus/rwiki (last version 0.2.5, not 2.1.1). - Found two other repos: - https://github.com/rwiki/rwiki - https://github.com/ytakhs/rwiki - CWE: [NVD-CWE-Other] MODERATE