CVE-2017-12583 (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12583): DokuWiki through 2017-02-19b has XSS in the at parameter (aka the DATE_AT variable) to doku.php. References: https://github.com/splitbrain/dokuwiki/issues/2061 Patch: https://github.com/phy25/dokuwiki/commit/6057f47313819fa346dce7b72cf3922ba7931f1a
https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c31676125999f57f4e98a7b2c63346f6fe14261f www-apps/dokuwiki: Add releases 20160626e and 20170219e - security bump to address CVE-2017-{12583,12979,12980}. Fixes bug 627154 and bug 628482.