CVE-2009-0312

Debian Bug report logs - #513158 CVE-2009-0260: Multiple cross-site scripting vulnerabilities Package: python-moinmoin; Maintainer for python-moinmoin is Steve McIntyre <93sam@debianorg>; Source for python-moinmoin is src:moin (PTS, buildd, popcon) Reported by: Steffen Joeris <steffenjoeris@skolelinuxde> Date: Mon ...

Fernando Quintero discovered than MoinMoin did not properly sanitize its input when processing login requests, resulting in cross-site scripting (XSS) vulnerabilities With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the conte ...

It was discovered that the AttachFile action in moin, a python clone of WikiWiki, is prone to cross-site scripting attacks (CVE-2009-0260) Another cross-site scripting vulnerability was discovered in the antispam feature (CVE-2009-0312) For the stable distribution (etch) these problems have been fixed in version 153-12etch2 For the testing (l ...