Cross-site scripting (XSS) vulnerability in ScrewTurn Wiki 2.0.29 and 2.0.30 allows remote attackers to inject arbitrary web script or HTML via error messages in the "/admin.aspx - System Log" page.
Software | From | Fixed in |
---|---|---|
screwturn / screwturn_wiki | 2.0.29 | 2.0.29.x |
screwturn / screwturn_wiki | 2.0.30 | 2.0.30.x |