CVE-2006-2840 Information

Description

Cross-site scripting (XSS) vulnerability in (1) uploads.php and (2) \url links\ in PmWiki 2.1.6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.

Reference

http://secunia.com/advisories/20386 http://www.pmwiki.org/wiki/PmWiki/ChangeLog http://www.vupen.com/english/advisories/2006/2084 https://exchange.xforce.ibmcloud.com/vulnerabilities/26827 Cross-site scripting (XSS) vulnerability in (1) uploads.php and (2) \url links
in PmWiki 2.1.6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.