Page 7 of 35 results (0.010 seconds)

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

Multiple cross-site scripting (XSS) vulnerabilities in Info pages in MoinMoin 1.5.7 allow remote attackers to inject arbitrary web script or HTML via the (1) hitcounts and (2) general parameters, different vectors than CVE-2007-0857. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Múltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en Info pages de MoinMoin 1.5.7 permiten a atacantes remotos inyectar secuencias de comandos web o HTML de su elección mediante los parámetros (1) hitcounts y (2) general, vectores diferentes que CVE-2007-0857. NOTA: la procedencia de esta información es desconocida; los detalles se han obtenido de información de terceros. • http://osvdb.org/33172 http://secunia.com/advisories/24138 http://secunia.com/advisories/24244 http://www.securityfocus.com/bid/22515 http://www.ubuntu.com/usn/usn-423-1 •

CVSS: 4.3EPSS: 1%CPEs: 11EXPL: 0

Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin before 1.5.7 allow remote attackers to inject arbitrary web script or HTML via (1) the page info, or the page name in a (2) AttachFile, (3) RenamePage, or (4) LocalSiteMap action. Múltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en MoinMoin anterior a 1.5.7 permiten a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través de (1) la información de la página, o el nombre de página en una acción (2) AttachFile, (3) RenamePage, o (4) LocalSiteMap. • http://moinmoin.wikiwikiweb.de/MoinMoinRelease1.5/CHANGES http://osvdb.org/31871 http://osvdb.org/31872 http://osvdb.org/31873 http://secunia.com/advisories/24096 http://secunia.com/advisories/24117 http://www.osvdb.org/31874 http://www.securityfocus.com/bid/22506 http://www.ubuntu.com/usn/usn-421-1 http://www.vupen.com/english/advisories/2007/0553 https://exchange.xforce.ibmcloud.com/vulnerabilities/32377 •

CVSS: 10.0EPSS: 0%CPEs: 13EXPL: 0

Unknown vulnerability in the PageEditor in MoinMoin 1.2.2 and earlier, related to Access Control Lists (ACL), has unknown impact. • http://sourceforge.net/project/shownotes.php?group_id=8482&release_id=254801 http://www.gentoo.org/security/en/glsa/glsa-200408-25.xml http://www.osvdb.org/displayvuln.php?osvdb_id=8195 http://www.securityfocus.com/bid/10801 https://exchange.xforce.ibmcloud.com/vulnerabilities/16832 •

CVSS: 7.5EPSS: 2%CPEs: 13EXPL: 0

Unknown vulnerability in MoinMoin 1.2.2 and earlier allows remote attackers to gain unauthorized access to administrator functions such as (1) revert and (2) delete. • http://www.gentoo.org/security/en/glsa/glsa-200408-25.xml http://www.osvdb.org/displayvuln.php?osvdb_id=8194 http://www.securityfocus.com/bid/10805 https://exchange.xforce.ibmcloud.com/vulnerabilities/16833 https://sourceforge.net/project/shownotes.php?group_id=8482&release_id=254801 •

CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0

MoinMoin 1.2.1 and earlier allows remote attackers to gain privileges by creating a user with the same name as an existing group that has higher privileges. MoinMoin 1.2.1 y anteiores permite a atacantes remotos ganar privilegios creando un usuario con el mismo nombre de un grupo existente con privilegios mayores. • http://secunia.com/advisories/11807 http://sourceforge.net/tracker/index.php?func=detail&aid=948103&group_id=8482&atid=108482 http://www.gentoo.org/security/en/glsa/glsa-200407-09.xml http://www.osvdb.org/6704 http://www.securityfocus.com/bid/10568 https://exchange.xforce.ibmcloud.com/vulnerabilities/16465 •