5.5 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
74.0%
Multiple cross-site scripting (XSS) vulnerabilities in action/AttachFile.py in MoinMoin 1.5.8 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) message, (2) pagename, and (3) target filenames.