2 matches found
CVE-2010-3841
Multiple cross-site scripting XSS vulnerabilities in lib/TWiki.pm in TWiki before 5.0.1 allow remote attackers to inject arbitrary web script or HTML via 1 the rev parameter to the view script or 2 the query string to the login script...
CVE-2010-3841
CVE-2010-3841 affects TWiki prior to 5.0.1 via lib/TWiki.pm, enabling remote XSS by crafted input (the rev parameter in view and query string in login). Affected component is the TWiki web app; root cause is insufficient input sanitization allowing script/HTML injection. Documented impact: remote...