4 matches found
CVE-2011-5025
Multiple cross-site scripting XSS vulnerabilities in the wiki application in Yaws 1.88 allow remote attackers to inject arbitrary web script or HTML via 1 the tag parameter to editTag.yaws, 2 the index parameter to showOldPage.yaws, 3 the node parameter to allRefsToMe.yaws, or 4 the text paramete...
CVE-2011-5025
Multiple cross-site scripting XSS vulnerabilities in the wiki application in Yaws 1.88 allow remote attackers to inject arbitrary web script or HTML via 1 the tag parameter to editTag.yaws, 2 the index parameter to showOldPage.yaws, 3 the node parameter to allRefsToMe.yaws, or 4 the text paramete...
CVE-2011-5025
Multiple cross-site scripting XSS vulnerabilities in the wiki application in Yaws 1.88 allow remote attackers to inject arbitrary web script or HTML via 1 the tag parameter to editTag.yaws, 2 the index parameter to showOldPage.yaws, 3 the node parameter to allRefsToMe.yaws, or 4 the text paramete...
CVE-2011-5025
CVE-2011-5025 concerns multiple XSS vulnerabilities in the Yaws wiki application (version 1.88). The affected component is the wiki web interface, with exploitable vectors including tag (editTag.yaws), index (showOldPage.yaws), node (allRefsToMe.yaws), and text (editPage.yaws). Root cause is impr...