CVE-2012-6082: MoinMoin Cross-site scripting (XSS) vulnerability
(updated )
Cross-site scripting (XSS) vulnerability in the rsslink function in theme/__init__.py
in MoinMoin before 1.9.6 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link.
References
- github.com/advisories/GHSA-452h-rx28-49w9
- github.com/moinwiki/moin
- github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2013-23.yaml
- nvd.nist.gov/vuln/detail/CVE-2012-6082
- web.archive.org/web/20151023152540/http://secunia.com/advisories/51663
- web.archive.org/web/20200228182002/http://www.securityfocus.com/bid/57089
Detect and mitigate CVE-2012-6082 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →