Multiple cross-site scripting (XSS) vulnerabilities in lib/TWiki.pm in TWiki prior to 5.0.1 allow remote malicious users to inject arbitrary web script or HTML via (1) the rev parameter to the view script or (2) the query string to the login script.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
twiki twiki 4.0.1 |
||
twiki twiki 4.0.2 |
||
twiki twiki 4.0.3 |
||
twiki twiki 4.2.3 |
||
twiki twiki 4.2.4 |
||
twiki twiki 2003-02-01 |
||
twiki twiki 2004-09-01 |
||
twiki twiki 4.1.0 |
||
twiki twiki 4.1.1 |
||
twiki twiki 4.3.2 |
||
twiki twiki 2000-12-01 |
||
twiki twiki 2004-09-04 |
||
twiki twiki |
||
twiki twiki 4.0.4 |
||
twiki twiki 4.0.5 |
||
twiki twiki 4.3.0 |
||
twiki twiki 4.3.1 |
||
twiki twiki 2004-09-02 |
||
twiki twiki 2004-09-03 |
||
twiki twiki 4.0.0 |
||
twiki twiki 4.1.2 |
||
twiki twiki 4.2.2 |
||
twiki twiki 2001-09-01 |
||
twiki twiki 2001-12-01 |