3 matches found
CVE-2014-9325
CVE-2014-9325 affects TWiki 6.0.1 with multiple XSS vulnerabilities accessible via the URL query strings. Specifically, the vulnerable components are lib/TWiki.pm (QUERYSTRING) and lib/TWiki/UI/View.pm (QUERYPARAMSTRING). Exploitation involves crafting URL parameters such as those targeting do/vi...
TWiki Security Advisory - XSS Vulnerability - CVE-2014-9325
Information -------------------- Advisory by Netsparker. Name: XSS Vulnerability with QUERYSTRING and QUERYPARAMSTRING in TWiki Affected Software : TWiki Affected Versions: 6.0.1 and possibly below Vendor Homepage : http://www.twiki.org/ Vulnerability Type : Cross-site Scripting Severity :...
TWiki 6.0.1 QUERYSTRING / QUERYPARAMSTRING XSS
This is an advisory for TWiki Administrators: The TWiki Variables QUERYSTRING and QUERYPARAMSTRING may expose a cross-site scripting vulnerability. TWiki http://twiki.org is an Open Source Enterprise Wiki and Web Application Platform used by millions of people. Vulnerable Software Version Attack...