Back to search
CVE-2009-1482
Published: Apr 29, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple cross-site scripting (XSS) vulnerabilities in action/AttachFile.py in MoinMoin 1.8.2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) an AttachFile sub-action in the error_msg function or (2) multiple vectors related to package file errors in the upload_form function, different vectors than CVE-2009-0260.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
moinmoin-errormsg-xss(50356)
vdb-entry
x_refsource_XF
http://moinmo.in/SecurityFixes
x_refsource_CONFIRM
ADV-2009-1119
vdb-entry
x_refsource_VUPEN
http://hg.moinmo.in/moin/1.8/rev/5f51246a4df1
x_refsource_CONFIRM
34631
vdb-entry
x_refsource_BID
35024
third-party-advisory
x_refsource_SECUNIA
34945
third-party-advisory
x_refsource_SECUNIA
DSA-1791
vendor-advisory
x_refsource_DEBIAN
34821
third-party-advisory
x_refsource_SECUNIA
USN-774-1
vendor-advisory
x_refsource_UBUNTU
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now