2

Ubuntu: 925-1: MoinMoin vulnerabilities

view story
linux-howto

http://www.linuxsecurity.com – LinuxSecurity.com: It was discovered that MoinMoin did not properly sanitize its input whenprocessing Despam actions, resulting in cross-site scripting (XSS)vulnerabilities. If a privileged wiki user were tricked into performingthe Despam action on a page with a crafted title, a remote attacker couldexploit this to execute JavaScript code. (CVE-2010-0828) [More...] (Security)