← voltar
CVE-2010-0828

CVE-2010-0828

EPSS 2.2%
Cross-site scripting (XSS) vulnerability in action/Despam.py in the Despam action module in MoinMoin 1.8.7 and 1.9.2 allows remote authenticated users to inject arbitrary web script or HTML by creating a page with a crafted URI.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=575995http://hg.moinmo.in/moin/1.9/rev/6e603e5411cahttp://lists.fedoraproject.org/pipermail/package-announce/2010-April/038490.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-April/038574.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-April/038706.htmlhttps://bugs.launchpad.net/ubuntu/+source/moin/+bug/538022https://bugzilla.redhat.com/show_bug.cgi?id=578801http://secunia.com/advisories/39188http://secunia.com/advisories/39190http://secunia.com/advisories/39267http://secunia.com/advisories/39284https://exchange.xforce.ibmcloud.com/vulnerabilities/57435