Lucene search
K

6 matches found

OSV
OSV
added 2022/05/01 5:47 p.m.23 views

GHSA-9GJ2-PH57-56F5 MoinMoin Cross-Site Scripting (XSS) vulnerability via hitcounts and general parameters

Multiple cross-site scripting XSS vulnerabilities in Info pages in MoinMoin 1.5.7 allow remote attackers to inject arbitrary web script or HTML via the 1 hitcounts and 2 general parameters, different vectors than CVE-2007-0857. NOTE: the provenance of this information is unknown; the details are...

4.3CVSS5.2AI score0.01682EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2022/05/01 5:47 p.m.34 views

MoinMoin Cross-Site Scripting (XSS) vulnerability via hitcounts and general parameters

Multiple cross-site scripting XSS vulnerabilities in Info pages in MoinMoin 1.5.7 allow remote attackers to inject arbitrary web script or HTML via the 1 hitcounts and 2 general parameters, different vectors than CVE-2007-0857. NOTE: the provenance of this information is unknown; the details are...

4.3CVSS5.9AI score0.01682EPSS
Exploits0References7Affected Software1
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.19 views

FreeBSD Ports: moinmoin

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.5CVSS6.5AI score0.14787EPSS
Exploits2References4
Prion
Prion
added 2007/05/02 12:19 a.m.23 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in MoinMoin 1.5.7 allows remote attackers to inject arbitrary web script or HTML via the do parameter in an AttachFile action, a different vulnerability than CVE-2007-0857. NOTE: the provenance of this information is unknown; the details are...

5.8CVSS5.4AI score0.03553EPSS
Exploits1References5Affected Software1
UbuntuCve
UbuntuCve
added 2007/02/13 8:28 p.m.22 views

CVE-2007-0901

Multiple cross-site scripting XSS vulnerabilities in Info pages in MoinMoin 1.5.7 allow remote attackers to inject arbitrary web script or HTML via the 1 hitcounts and 2 general parameters, different vectors than CVE-2007-0857. NOTE: the provenance of this information is unknown; the details are...

4.3CVSS6AI score0.01682EPSS
Exploits0References2
CVE
CVE
added 2007/02/08 6:0 p.m.75 views

CVE-2007-0857

CVE-2007-0857 covers multiple XSS vulnerabilities in MoinMoin prior to 1.5.7. The issues allow remote attackers to inject arbitrary script/HTML via (1) page info, or the page name in (2) AttachFile, (3) RenamePage, or (4) LocalSiteMap actions. The vulnerability is documented across sources (OSV/G...

4.3CVSS5.4AI score0.02326EPSS
Exploits0References11Affected Software1
Rows per page
Query Builder