None of these issues are believed to result in compromise of the web server or of Foswiki data.
Details are available in the individual linked tasks. These will be available for viewing following the general release of Foswiki 2.1.3.
Good browser practices can now prevent most XSS injection attacks. We also recommend use of the appropriate Security headers. These can be set in the web server configuration.
Authors and Credits
Hotfix for Foswiki Production Release
No hotfixes are available for these vulnerabilities. Upgrade to Foswiki-2.1.3