4 matches found
CVE-2010-4640
Multiple cross-site scripting XSS vulnerabilities in XWiki Watch 1.0 allow remote attackers to inject arbitrary web script or HTML via the rev parameter to 1 bin/viewrev/Main/WebHome and 2 bin/view/Blog, and the 3 registerfirstname and 4 registerlastname parameters to bin/register/XWiki/Register...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in XWiki Watch 1.0 allow remote attackers to inject arbitrary web script or HTML via the rev parameter to 1 bin/viewrev/Main/WebHome and 2 bin/view/Blog, and the 3 registerfirstname and 4 registerlastname parameters to bin/register/XWiki/Register...
CVE-2010-4640
XWiki Watch 1.0 is affected by multiple Cross-Site Scripting (XSS) vulnerabilities. The issues arise from user-supplied input in the rev parameter for bin/viewrev/Main/WebHome and bin/view/Blog, and in the register_first_name/register_last_name parameters for bin/register/XWiki/Register. Impact d...
CVE-2010-4640
Multiple cross-site scripting XSS vulnerabilities in XWiki Watch 1.0 allow remote attackers to inject arbitrary web script or HTML via the rev parameter to 1 bin/viewrev/Main/WebHome and 2 bin/view/Blog, and the 3 registerfirstname and 4 registerlastname parameters to bin/register/XWiki/Register...