SUSE CVE-2020-15275

MoinMoin is a wiki engine. In MoinMoin before version 1.9.11, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user's browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrad...

The vulnerability of the SVG file on the MoinMoin wiki platform, due to deficiencies in the measures used to protect web page structures, allows attackers to compromise the integrity of the data.

The vulnerability of the SVG file on the wiki platform MoinMoin is related to deficiencies in the security measures used to protect web page structures. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of the data...

OPENSUSE-SU-2020:1998-1 Security update for moinmoin-wiki

This update for moinmoin-wiki fixes the following issues: - update to version 1.9.11: CVE-2020-25074 boo1178744: fix remote code execution via cache action CVE-2020-15275 boo1178745: fix malicious SVG attachment causing stored XSS vulnerability This update was imported from the...

Security update for moinmoin-wiki (important)

openSUSE Security Update: Security update for moinmoin-wiki Announcement ID: openSUSE-SU-2020:1998-1 Rating: important References: 1178744 1178745 Cross-References: CVE-2020-15275 CVE-2020-25074 Affected Products: openSUSE Backports SLE-15-SP2 An update that fixes two vulnerabilities is now...

openSUSE Security Update : moinmoin-wiki (openSUSE-2020-1966)

This update for moinmoin-wiki fixes the following issues : - update to version 1.9.11: CVE-2020-25074 boo1178744: fix remote code execution via cache action CVE-2020-15275 boo1178745: fix malicious SVG attachment causing stored XSS vulnerability C Tenable Network Security, Inc. The descriptive te...

OPENSUSE-SU-2020:1966-1 Security update for moinmoin-wiki

This update for moinmoin-wiki fixes the following issues: - update to version 1.9.11: CVE-2020-25074 boo1178744: fix remote code execution via cache action CVE-2020-15275 boo1178745: fix malicious SVG attachment causing stored XSS vulnerability...

Security update for moinmoin-wiki (important)

openSUSE Security Update: Security update for moinmoin-wiki Announcement ID: openSUSE-SU-2020:1966-1 Rating: important References: 1178744 1178745 Cross-References: CVE-2020-15275 CVE-2020-25074 Affected Products: openSUSE Leap 15.2 An update that fixes two vulnerabilities is now available...

PYSEC-2020-241

MoinMoin is a wiki engine. In MoinMoin before version 1.9.11, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user's browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrad...

GHSA-4Q96-6XHQ-FF43 malicious SVG attachment causing stored XSS vulnerability

Impact An attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user's browser when the user is viewing that SVG file on the wiki. Patches Users are strongly advised to upgrade to a patched version. MoinMoin Wiki 1.9.11 ha...

malicious SVG attachment causing stored XSS vulnerability

Impact An attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user's browser when the user is viewing that SVG file on the wiki. Patches Users are strongly advised to upgrade to a patched version. MoinMoin Wiki 1.9.11 ha...

openSUSE Security Update : moinmoin-wiki (openSUSE-2019-355)

This update for moinmoin-wiki to version 1.9.10 fixes the following security issue : - CVE-2017-5934: Cross-site scripting vulnerability in the GUI editor boo1111104 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

openSUSE Security Update : moinmoin-wiki (openSUSE-2018-1145)

This update for moinmoin-wiki to version 1.9.10 fixes the following security issue : - CVE-2017-5934: Cross-site scripting vulnerability in the GUI editor boo1111104 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

openSUSE: Security Advisory for moinmoin-wiki (openSUSE-SU-2018:3105-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for moinmoin-wiki (moderate)

This update for moinmoin-wiki to version 1.9.10 fixes the following security issue: - CVE-2017-5934: Cross-site scripting vulnerability in the GUI editor boo1111104...

MoinMoin 'Despam' Action Cross-Site Scripting Vulnerability

This host is running MoinMoin Wiki and is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbmoinmoinwikixssvuln.nasl 5306 2017-02-16 09:00:16Z teissa $ MoinMoin 'Despam' Action Cross Site Scripting Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2010 Greenbo...

MoinMoin Wiki Security Bypass Vulnerability

This host is running MoinMoin Wiki and is prone to security bypass vulnerability. OpenVAS Vulnerability Test $Id: gbmoinmoinwikibypassvuln.nasl 5306 2017-02-16 09:00:16Z teissa $ MoinMoin Wiki Security Bypass Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2010 Greenbone Networks GmbH,...

MoinMoin Wiki Security Bypass Vulnerability

MoinMoin Wiki is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:moinmo:moinmoin";...

MoinMoin Wiki Security Bypass Vulnerability

This host is running MoinMoin Wiki and is prone to security bypass vulnerability. OpenVAS Vulnerability Test $Id: secpodmoinmoinwikiaclsecbypassvuln.nasl 5394 2017-02-22 09:22:42Z teissa $ MoinMoin Wiki ACL Security Bypass Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2010 SecPod,...

MoinMoin Wiki User Profile Unspecified Vulnerability

This host is running MoinMoin Wiki and is prone to unspecified vulnerability. OpenVAS Vulnerability Test $Id: gbmoinmoinwikiuserprofunspecifiedvuln.nasl 5306 2017-02-16 09:00:16Z teissa $ MoinMoin Wiki User Profile Unspecified Vulnerability Authors: Veerendra GG Copyright: Copyright c 2010...

MoinMoin Wiki 'sys.argv' Information Disclosure Vulnerability

This host is running MoinMoin Wiki and is prone to Information Disclosure vulnerability OpenVAS Vulnerability Test $Id: gbmoinmoinwikisysargvinfodiscvuln.nasl 5306 2017-02-16 09:00:16Z teissa $ MoinMoin Wiki 'sys.argv' Information Disclosure Vulnerability Authors: Veerendra GG Copyright: Copyrigh...