7 matches found
EUVD-2013-0018
Malware in sbrugna...
MoinMoin Cross-site scripting (XSS) vulnerability
Cross-site scripting XSS vulnerability in the rsslink function in theme/init.py in MoinMoin before 1.9.6 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link...
MoinMoin rsslink() Function page_name Parameter XSS
The MoinMoin install hosted on the remote web server fails to properly sanitize user-supplied input in the 'pagename' parameter when creating an rss link. An attacker may be able to leverage this issue to inject arbitrary HTML and script code into a user's browser to be executed within the securi...
Cross site scripting
Cross-site scripting XSS vulnerability in the rsslink function in theme/init.py in MoinMoin 1.9.5 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link...
PYSEC-2013-23
Cross-site scripting XSS vulnerability in the rsslink function in theme/init.py in MoinMoin 1.9.5 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link...
PYSEC-2013-23
Cross-site scripting XSS vulnerability in the rsslink function in theme/init.py in MoinMoin 1.9.5 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link...
CVE-2012-6082
Removed by vendor...