{"id":"CVE-2012-2129","details":"Cross-site scripting (XSS) vulnerability in doku.php in DokuWiki 2012-01-25 Angua allows remote attackers to inject arbitrary web script or HTML via the target parameter in an edit action.","modified":"2026-04-10T03:42:18.501490Z","published":"2012-08-27T21:55:01Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/48848"},{"type":"EVIDENCE","url":"http://ircrash.com/uploads/dokuwiki.txt"},{"type":"FIX","url":"https://github.com/splitbrain/dokuwiki/commit/ff71173477e54774b5571015d49d944f51cb8a26"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=815122"},{"type":"WEB","url":"http://bugs.dokuwiki.org/index.php?do=details&task_id=2487"},{"type":"WEB","url":"http://seclists.org/bugtraq/2012/Apr/121"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2012/04/22/4"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2012/04/23/1"},{"type":"WEB","url":"http://www.securityfocus.com/bid/53041"},{"type":"WEB","url":"https://bugs.gentoo.org/show_bug.cgi?id=412891"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/74907"}],"schema_version":"1.7.5"}