Описание
Cross-site scripting (XSS) vulnerability in index.php in MoinMoin 1.5.7 allows remote attackers to inject arbitrary web script or HTML via the do parameter in an AttachFile action, a different vulnerability than CVE-2007-0857. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.5.2-1ubuntu2.3 |
| devel | released | 1.5.7-3ubuntu2 |
| edgy | released | 1.5.3-1ubuntu1.3 |
| feisty | released | 1.5.3-1.1ubuntu3.1 |
| upstream | needs-triage |
Показывать по
EPSS
5.8 Medium
CVSS2
Связанные уязвимости
Cross-site scripting (XSS) vulnerability in index.php in MoinMoin 1.5.7 allows remote attackers to inject arbitrary web script or HTML via the do parameter in an AttachFile action, a different vulnerability than CVE-2007-0857. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Cross-site scripting (XSS) vulnerability in index.php in MoinMoin 1.5. ...
Cross-site scripting (XSS) vulnerability in index.php in MoinMoin 1.5.7 allows remote attackers to inject arbitrary web script or HTML via the do parameter in an AttachFile action, a different vulnerability than CVE-2007-0857. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
EPSS
5.8 Medium
CVSS2