CVE-2010-0828

2010-03-3000:00:00

ubuntu.com

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

54.9%

JSON

Cross-site scripting (XSS) vulnerability in action/Despam.py in the Despam
action module in MoinMoin 1.8.7 and 1.9.2 allows remote authenticated users
to inject arbitrary web script or HTML by creating a page with a crafted
URI.

Bugs

<https://launchpad.net/bugs/538022>

Notes

Author	Note
jdstrand	XSS in Despam page The page name is not escaped in the revert_pages() function in Despam.py. It appears only privileged users are allowed to use the Despam action. Since the script must occur in the page name, it is pretty obvious when viewing that the page is suspicious (but this might be why someone was using the Despam action in the first place). There is also a limit on the length of the page name.

Author

Note

jdstrand

XSS in Despam page The page name is not escaped in the revert_pages() function in Despam.py. It appears only privileged users are allowed to use the Despam action. Since the script must occur in the page name, it is pretty obvious when viewing that the page is suspicious (but this might be why someone was using the Despam action in the first place). There is also a limit on the length of the page name.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchmoin< 1.5.2-1ubuntu2.6UNKNOWN
ubuntu8.04noarchmoin< 1.5.8-5.1ubuntu2.4UNKNOWN
ubuntu8.10noarchmoin< 1.7.1-1ubuntu1.5UNKNOWN
ubuntu9.04noarchmoin< 1.8.2-2ubuntu2.3UNKNOWN
ubuntu9.10noarchmoin< 1.8.4-1ubuntu1.2UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	6.06	noarch	moin	< 1.5.2-1ubuntu2.6	UNKNOWN
ubuntu	8.04	noarch	moin	< 1.5.8-5.1ubuntu2.4	UNKNOWN
ubuntu	8.10	noarch	moin	< 1.7.1-1ubuntu1.5	UNKNOWN
ubuntu	9.04	noarch	moin	< 1.8.2-2ubuntu2.3	UNKNOWN
ubuntu	9.10	noarch	moin	< 1.8.4-1ubuntu1.2	UNKNOWN