vulnerability

FreeBSD: VID-AB804E60-D693-11E6-9171-14DAE9D210B8 (CVE-2016-7146): moinmoin -- XSS vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:P/A:N)	Oct 31, 2016	Jan 10, 2017	May 7, 2019

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:P/A:N)

Published

Oct 31, 2016

Added

Jan 10, 2017

Modified

May 7, 2019

Description

MoinMoin 1.9.8 allows remote attackers to conduct "JavaScript injection" attacks by using the "page creation or crafted URL" approach, related to a "Cross Site Scripting (XSS)" issue affecting the action=fckdialog&dialog=attachment (via page name) component.

Solution

freebsd-upgrade-package-moinmoin

References

DEBIAN-DLA-717-1
DEBIAN-DSA-3715
UBUNTU-USN-3137-1
NVD-CVE-2016-7146

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today