VDB
EN

PYSEC-2026-673

MoinMoin Cross-Site Scripting (XSS) vulnerability via hitcounts and general parameters

상세

Multiple cross-site scripting (XSS) vulnerabilities in Info pages in MoinMoin 1.5.7 allow remote attackers to inject arbitrary web script or HTML via the (1) hitcounts and (2) general parameters, different vectors than CVE-2007-0857. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

이 버전이 영향받나요?

사용 중인 패키지 버전을 입력하면 즉시 평가합니다.

영향 패키지

PyPI / moin
최초 영향 버전: 0 수정 버전: 1.5.8
수정 pip install --upgrade 'moin>=1.5.8'

참고