3 matches found
PYSEC-2010-18
Multiple cross-site scripting XSS vulnerabilities in MoinMoin 1.9.x before 1.9.3 allow remote attackers to inject arbitrary web script or HTML via crafted content, related to 1 action/SlideShow.py, 2 action/anywikidraw.py, and 3 action/languagesetup.py, a similar issue to CVE-2010-2487...
CVE-2010-2970
MoinMoin 1.9.x prior to 1.9.3 is affected by CVE-2010-2970 (XSS) via crafted content in action/SlideShow.py, action/anywikidraw.py, and action/language_setup.py. The vulnerability allows remote attackers to inject arbitrary script/HTML; impact is partial integrity and potential client-side data e...
CVE-2010-0668
Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or OpenID configured...