Raul Benencia discovered that ikiwiki, a wiki compiler, does not properly escape the author of certain metadata, such as comments. This might be used to conduct cross-site scripting attacks.