3 matches found
TWiki 5.0.1 - 'origurl' Cross-Site Scripting
source: https://www.securityfocus.com/bid/47899/info TWiki is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of t...
CVE-2010-3841
Multiple cross-site scripting XSS vulnerabilities in lib/TWiki.pm in TWiki before 5.0.1 allow remote attackers to inject arbitrary web script or HTML via 1 the rev parameter to the view script or 2 the query string to the login script...
TWiki 5.0 - bin/login Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/44103/info TWiki is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...