Page 8 of 39 results (0.007 seconds)

CVSS: 4.3EPSS: 1%CPEs: 11EXPL: 0

Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin before 1.5.7 allow remote attackers to inject arbitrary web script or HTML via (1) the page info, or the page name in a (2) AttachFile, (3) RenamePage, or (4) LocalSiteMap action. Múltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en MoinMoin anterior a 1.5.7 permiten a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través de (1) la información de la página, o el nombre de página en una acción (2) AttachFile, (3) RenamePage, o (4) LocalSiteMap. • http://moinmoin.wikiwikiweb.de/MoinMoinRelease1.5/CHANGES http://osvdb.org/31871 http://osvdb.org/31872 http://osvdb.org/31873 http://secunia.com/advisories/24096 http://secunia.com/advisories/24117 http://www.osvdb.org/31874 http://www.securityfocus.com/bid/22506 http://www.ubuntu.com/usn/usn-421-1 http://www.vupen.com/english/advisories/2007/0553 https://exchange.xforce.ibmcloud.com/vulnerabilities/32377 •

CVSS: 10.0EPSS: 0%CPEs: 13EXPL: 0

Unknown vulnerability in the PageEditor in MoinMoin 1.2.2 and earlier, related to Access Control Lists (ACL), has unknown impact. • http://sourceforge.net/project/shownotes.php?group_id=8482&release_id=254801 http://www.gentoo.org/security/en/glsa/glsa-200408-25.xml http://www.osvdb.org/displayvuln.php?osvdb_id=8195 http://www.securityfocus.com/bid/10801 https://exchange.xforce.ibmcloud.com/vulnerabilities/16832 •

CVSS: 7.5EPSS: 2%CPEs: 13EXPL: 0

Unknown vulnerability in MoinMoin 1.2.2 and earlier allows remote attackers to gain unauthorized access to administrator functions such as (1) revert and (2) delete. • http://www.gentoo.org/security/en/glsa/glsa-200408-25.xml http://www.osvdb.org/displayvuln.php?osvdb_id=8194 http://www.securityfocus.com/bid/10805 https://exchange.xforce.ibmcloud.com/vulnerabilities/16833 https://sourceforge.net/project/shownotes.php?group_id=8482&release_id=254801 •

CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0

MoinMoin 1.2.1 and earlier allows remote attackers to gain privileges by creating a user with the same name as an existing group that has higher privileges. MoinMoin 1.2.1 y anteiores permite a atacantes remotos ganar privilegios creando un usuario con el mismo nombre de un grupo existente con privilegios mayores. • http://secunia.com/advisories/11807 http://sourceforge.net/tracker/index.php?func=detail&aid=948103&group_id=8482&atid=108482 http://www.gentoo.org/security/en/glsa/glsa-200407-09.xml http://www.osvdb.org/6704 http://www.securityfocus.com/bid/10568 https://exchange.xforce.ibmcloud.com/vulnerabilities/16465 •