Unknown
CVE-2009-1482
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
Unknown
(0 users assessed)
Unknown
(0 users assessed)Unknown
Unknown
Unknown
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
Multiple cross-site scripting (XSS) vulnerabilities in action/AttachFile.py in MoinMoin 1.8.2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) an AttachFile sub-action in the error_msg function or (2) multiple vectors related to package file errors in the upload_form function, different vectors than CVE-2009-0260.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Products
- moinmoin,
- moinmoin 0.1,
- moinmoin 0.10,
- moinmoin 0.11,
- moinmoin 0.2,
- moinmoin 0.3,
- moinmoin 0.7,
- moinmoin 0.8,
- moinmoin 0.9,
- moinmoin 1.0,
- moinmoin 1.1,
- moinmoin 1.2,
- moinmoin 1.2.1,
- moinmoin 1.2.2,
- moinmoin 1.5.0,
- moinmoin 1.5.1,
- moinmoin 1.5.2,
- moinmoin 1.5.3,
- moinmoin 1.5.3 rc1,
- moinmoin 1.5.3 rc2,
- moinmoin 1.5.4,
- moinmoin 1.5.5,
- moinmoin 1.5.5 rc1,
- moinmoin 1.5.5a,
- moinmoin 1.5.6,
- moinmoin 1.5.7,
- moinmoin 1.5.8,
- moinmoin 1.6,
- moinmoin 1.6.0,
- moinmoin 1.6.1,
- moinmoin 1.6.2,
- moinmoin 1.6.3,
- moinmoin 1.7,
- moinmoin 1.7.0,
- moinmoin 1.7.1,
- moinmoin 1.7.2,
- moinmoin 1.7.3,
- moinmoin 1.8.0,
- moinmoin 1.8.1
References
Advisory
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
