Required CVE Record Information
Description
Cross-site scripting (XSS) vulnerability in ScrewTurn Wiki 2.0.29 and 2.0.30 allows remote attackers to inject arbitrary web script or HTML via error messages in the "/admin.aspx - System Log" page.
References 5 Total
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 5 Total
- securityfocus.com: 30429 vdb-entryx_transferred
- http://www.portcullis.co.uk/281.php x_transferred
- exchange.xforce.ibmcloud.com: screwturnwiki-systemlog-xss(42858) vdb-entryx_transferred
- secunia.com: 31242 third-party-advisoryx_transferred
- http://www.screwturn.eu/Wiki.ashx#History_2 x_transferred