Web application abuses : MoniWiki < 1.0.9 XSS Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.15566

Categoría: Web application abuses

Título: MoniWiki < 1.0.9 XSS Vulnerability - Active Check

Resumen: MoniWiki is prone to a cross-site scripting (XSS); vulnerability.

Descripción: Summary:
MoniWiki is prone to a cross-site scripting (XSS)
vulnerability.

Vulnerability Insight:
The remote version of this software is vulnerable to XSS
attacks, through the script 'wiki.php'.

With a specially crafted URL, an attacker can cause arbitrary code execution in users' browsers
resulting in a loss of integrity.

Affected Software/OS:
MoniWiki version 1.0.8 and prior.

Solution:
Update to version 1.0.9 or later.

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:P/A:N

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2004-1632
BugTraq ID: 11516
http://www.securityfocus.com/bid/11516
Bugtraq: 20041025 STG Security Advisory: [SSA-20041022-08] MoniWiki XSS vulnerability (Google Search)
http://marc.info/?l=bugtraq&m=109873622006103&w=2
http://secunia.com/advisories/12975
XForce ISS Database: moniwiki-wiki-xss(17835)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17835

Copyright Copyright (C) 2004 David Maciejak

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.15566
Categoría:	Web application abuses
Título:	MoniWiki < 1.0.9 XSS Vulnerability - Active Check
Resumen:	MoniWiki is prone to a cross-site scripting (XSS); vulnerability.
Descripción:	Summary: MoniWiki is prone to a cross-site scripting (XSS) vulnerability. Vulnerability Insight: The remote version of this software is vulnerable to XSS attacks, through the script 'wiki.php'. With a specially crafted URL, an attacker can cause arbitrary code execution in users' browsers resulting in a loss of integrity. Affected Software/OS: MoniWiki version 1.0.8 and prior. Solution: Update to version 1.0.9 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-1632 BugTraq ID: 11516 http://www.securityfocus.com/bid/11516 Bugtraq: 20041025 STG Security Advisory: [SSA-20041022-08] MoniWiki XSS vulnerability (Google Search) http://marc.info/?l=bugtraq&m=109873622006103&w=2 http://secunia.com/advisories/12975 XForce ISS Database: moniwiki-wiki-xss(17835) https://exchange.xforce.ibmcloud.com/vulnerabilities/17835
Copyright	Copyright (C) 2004 David Maciejak