CVE-2008-0780: MoinMoin Cross-site scripting (XSS) vulnerability

May 1, 2022 (updated May 14, 2024)

Cross-site scripting (XSS) vulnerability in MoinMoin 1.5.x through 1.5.8 and 1.6.x before 1.6.1 allows remote attackers to inject arbitrary web script or HTML via the login action.

References

bugzilla.redhat.com/show_bug.cgi?id=432747
github.com/advisories/GHSA-53wj-6m7w-j6mj
nvd.nist.gov/vuln/detail/CVE-2008-0780
usn.ubuntu.com/716-1
www.redhat.com/archives/fedora-package-announce/2008-February/msg00726.html
www.redhat.com/archives/fedora-package-announce/2008-February/msg00752.html

Code Behaviors & Features

Detect and mitigate CVE-2008-0780 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →