CVE-2008-0780
https://notcve.org/view.php?id=CVE-2008-0780
Cross-site scripting (XSS) vulnerability in MoinMoin 1.5.x through 1.5.8 and 1.6.x before 1.6.1 allows remote attackers to inject arbitrary web script or HTML via the login action. Vulnerabilidad de secuencia de comandos en sitios cruzados en MoinMoin v1.5.x a la 1.5.8 y 1.6.x anterior a 1.6.1, permite a atacantes remotos ejecutar secuencias de comandos web o HTML a través de una acción de login. • http://hg.moinmo.in/moin/1.5/rev/2f952fa361c7 http://hg.moinmo.in/moin/1.6/rev/9f4bdc7ef80d http://secunia.com/advisories/28987 http://secunia.com/advisories/29010 http://secunia.com/advisories/29262 http://secunia.com/advisories/29444 http://secunia.com/advisories/33755 http://www.debian.org/security/2008/dsa-1514 http://www.gentoo.org/security/en/glsa/glsa-200803-27.xml http://www.securityfocus.com/bid/27904 http://www.vupen.com/english/advisories/2008/ • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •