Joey Hess · Ikiwiki-Hosting · CVE-2013-6047
**Name of the Vulnerable Software and Affected Versions**
ikiwiki-hosting versions prior to 0.20131025
**Description**
The issue concerns multiple cross-site scripting (XSS) vulnerabilities in the site creation interface. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
**Recommendations**
For versions prior to 0.20131025, update to version 0.20131025 or later to resolve the issue. As a temporary workaround, consider restricting access to the site creation interface until the update is applied.