Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0312

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2009-0312
Last Modified 05 Feb 2009 01:53:33
Published 27 Jan 2009 08:30:03
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-0312

Summary

Cross-site scripting (XSS) vulnerability in the antispam feature (security/antispam.py) in MoinMoin 1.7 and 1.8.1 allows remote attackers to inject arbitrary web script or HTML via crafted, disallowed content.

Vulnerable Systems

Application

  • Moinmoin 1.7.0

  • Moinmoin 1.8.1


References

XF - moinmoin-antispam-xss(48306)

UBUNTU - USN-716-1

MLIST - [oss-security] 20090127 CVE Request: MoinMoin

SECUNIA - 33755

SECUNIA - 33716

OSVDB - 51632

CONFIRM - http://moinmo.in/SecurityFixes#moin1.8.1

DEBIAN - DSA-1715

CONFIRM - http://hg.moinmo.in/moin/1.8/rev/89b91bf87dad

CONFIRM - http://hg.moinmo.in/moin/1.7/rev/89b91bf87dad


Last Updated: 27 May 2016 10:50:12