DSA-1791-1 moin - cross-site scripting

Bulletin has no description...

PYSEC-2009-6

Multiple cross-site scripting XSS vulnerabilities in action/AttachFile.py in MoinMoin 1.8.2 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 an AttachFile sub-action in the errormsg function or 2 multiple vectors related to package file errors in the uploadform...

Fedora Core 9 FEDORA-2009-3845 (moin)

The remote host is missing an update to moin announced via advisory FEDORA-2009-3845. OpenVAS Vulnerability Test $Id: fcore20093845.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3845 moin Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

Fedora Core 10 FEDORA-2009-3868 (moin)

The remote host is missing an update to moin announced via advisory FEDORA-2009-3868. OpenVAS Vulnerability Test $Id: fcore20093868.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3868 moin Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

Fedora Core 9 FEDORA-2009-3845 (moin)

The remote host is missing an update to moin announced via advisory FEDORA-2009-3845. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Fedora 9 : moin-1.6.4-1.fc9 (2009-3845)

Update moin to 1.6.4. Fix the following CVEs: CVE-2008-0781 again, CVE-2008-3381, CVE-2009-0260, CVE-2009-0312. Fix AttachFile escaping problems, upstream 1.7 changeset 5f51246a4df1 backported. Note that Tenable Network Security has extracted the preceding description block directly from the Fedo...

CVE-2009-0260

Multiple cross-site scripting XSS vulnerabilities in action/AttachFile.py in MoinMoin before 1.8.1 allow remote attackers to inject arbitrary web script or HTML via an AttachFile action to the WikiSandBox component with 1 the rename parameter or 2 the drawing parameter aka the basename variable...

CVE-2009-0260

Multiple cross-site scripting XSS vulnerabilities in action/AttachFile.py in MoinMoin before 1.8.1 allow remote attackers to inject arbitrary web script or HTML via an AttachFile action to the WikiSandBox component with 1 the rename parameter or 2 the drawing parameter aka the basename variable...

CVE-2009-0260

Removed by vendor...

CVE-2008-1098

Multiple cross-site scripting XSS vulnerabilities in MoinMoin 1.5.8 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 certain input processed by formatter/textgedit.py aka the gui editor formatter; 2 a page name, which triggers an injection in PageEditor.py when the...

FreeBSD : moinmoin -- multiple vulnerabilities (f113bbeb-e3ac-11dc-bb89-000bcdc1757a)

MoinMoin Security advisory XSS issue in login action XSS issue in AttachFile action XSS issue in RenamePage/DeletePage action XSS issue in gui editor %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML...

Fedora 8 : moin-1.5.8-4.fc8 (2008-1905)

Wed Feb 20 2008 Lubomir Kundrak 1.5.8-4 - Fix CVE-2008-0780 XSS in login action 2f952fa361c7 - Fix CVE-2008-0781 multiple XSS in AttachFile action db212dfc58ef - Fri Feb 8 2008 Matthias Saou 1.5.8-3 - Include e69a16b6e630 1.5 changeset as cookieidfix 432017. Note that Tenable Network Security has...

USN-458-1: MoinMoin vulnerabilities

A flaw was discovered in MoinMoin's error reporting when using the AttachFile action. By tricking a user into viewing a crafted MoinMoin URL, an attacker could execute arbitrary JavaScript as the current MoinMoin user, possibly exposing the user's authentication information for the domain where...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in MoinMoin 1.5.7 allows remote attackers to inject arbitrary web script or HTML via the do parameter in an AttachFile action, a different vulnerability than CVE-2007-0857. NOTE: the provenance of this information is unknown; the details are...

CVE-2007-2423

CVE-2007-2423 refers to a cross-site scripting (XSS) vulnerability in MoinMoin 1.5.7, exploitable via the do parameter in an AttachFile action on index.php. The CVSS v2 base score is 5.8 (PARTIAL impacts to confidentiality and integrity, no impact to availability; network attack vector, no authen...

CVE-2007-0857

Multiple cross-site scripting XSS vulnerabilities in MoinMoin before 1.5.7 allow remote attackers to inject arbitrary web script or HTML via 1 the page info, or the page name in a 2 AttachFile, 3 RenamePage, or 4 LocalSiteMap action...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in MoinMoin before 1.5.7 allow remote attackers to inject arbitrary web script or HTML via 1 the page info, or the page name in a 2 AttachFile, 3 RenamePage, or 4 LocalSiteMap action...

CVE-2007-0857

Multiple cross-site scripting XSS vulnerabilities in MoinMoin before 1.5.7 allow remote attackers to inject arbitrary web script or HTML via 1 the page info, or the page name in a 2 AttachFile, 3 RenamePage, or 4 LocalSiteMap action...

CVE-2007-0857

Multiple cross-site scripting XSS vulnerabilities in MoinMoin before 1.5.7 allow remote attackers to inject arbitrary web script or HTML via 1 the page info, or the page name in a 2 AttachFile, 3 RenamePage, or 4 LocalSiteMap action...

CVE-2007-0857

Removed by vendor...