cpe:/a:ikiwiki:ikiwiki:2.41 CVE-2008-0165 2008-04-21T09:05:00.000-04:00 2017-08-07T21:29:23.510-04:00 4.3 NETWORK MEDIUM NONE NONE PARTIAL NONE http://nvd.nist.gov 2008-04-21T14:09:00.000-04:00 SECUNIA 29907 SECUNIA 29932 VUPEN ADV-2008-1297 DEBIAN DSA-1553 CONFIRM http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=475445 CONFIRM http://ikiwiki.info/security/#index31h2 XF ikiwiki-change-password-csrf(41904) Cross-site request forgery (CSRF) vulnerability in Ikiwiki before 2.42 allows remote attackers to modify user preferences, including passwords, via the (1) preferences and (2) edit forms.