[dokuwiki] Monobook XSS Security Fix

• From: "Terence J. Grant" <tjgrant@xxxxxxxxxxxx>
• To: dokuwiki@xxxxxxxxxxxxx
• Date: Wed, 30 Jul 2008 02:50:20 -0400

Hi all,

Someone reported to me a "cross site scripting"(XSS) vulnerability in
the Monobook for DokuWiki template today.

I've found it, fixed it, and a new version is available on the download page.

I highly suggest anyone using monobook or a variation (custom
modifications) to get the new version.

http://tatewake.com/wiki/projects:monobook for dokuwiki

To do a minimalist upgrade, or for those with heavily customized
monobook installations:

You can simply extract the file "context.php" from the archive and
replace the context.php file in your monobook template folder with
this.

Any questions, feel free to contact me.
-- 
--Terence J. Grant
-- 
DokuWiki mailing list - more info at
http://wiki.splitbrain.org/wiki:mailinglist

• » Related posts
• » Previous by Date
• » Next by Date
• » This Month's Archive
• » Main Archive Page

• » View list details
• » Manage your subscription