CVE-2009-0312: MoinMoin Cross-site scripting (XSS) vulnerability in the antispam feature
(updated )
Cross-site scripting (XSS) vulnerability in the antispam feature (security/antispam.py) in MoinMoin 1.7 and 1.8.1 allows remote attackers to inject arbitrary web script or HTML via crafted, disallowed content.
References
- exchange.xforce.ibmcloud.com/vulnerabilities/48306
- github.com/advisories/GHSA-cx94-3h5x-cc57
- nvd.nist.gov/vuln/detail/CVE-2009-0312
- usn.ubuntu.com/716-1
- web.archive.org/web/20090323075215/http://hg.moinmo.in/moin/1.8/raw-file/1.8.2/docs/CHANGES
- web.archive.org/web/20100825000634/http://hg.moinmo.in/moin/1.7/rev/89b91bf87dad
- web.archive.org/web/20200228151935/http://hg.moinmo.in/moin/1.8/rev/89b91bf87dad
- www.debian.org/security/2009/dsa-1715
Detect and mitigate CVE-2009-0312 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →