Description
Cross-site scripting (XSS) vulnerability in pmwiki.php in PmWiki 2.2.20 allows remote attackers to inject arbitrary web script or HTML via the from parameter to Main/WikiSandbox. NOTE: some of these details are obtained from third party information.
Remediation
References
Related Vulnerabilities
WordPress Plugin Deeper Comments Security Bypass (2.1.1)
WordPress Plugin Olevmedia Shortcodes Cross-Site Scripting (1.1.8)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3586)
WordPress Plugin WP Activity Log Cross-Site Request Forgery (4.1.3.2)
WordPress Plugin FV Flowplayer Video Player Cross-Site Scripting (7.2.0.727)