Cross-site scripting (XSS) vulnerability in action/Despam.py in the Despam action module in MoinMoin 1.8.7 and 1.9.2 allows remote authenticated users to inject arbitrary web script or HTML by creating a page with a crafted URI.
Software | From | Fixed in |
---|---|---|
moinmo / moinmoin | 1.8.7 | 1.8.7.x |
moinmo / moinmoin | 1.9.2 | 1.9.2.x |