Required CVE Record Information
Description
Multiple cross-site scripting (XSS) vulnerabilities in lib/TWiki.pm in TWiki before 5.0.1 allow remote attackers to inject arbitrary web script or HTML via (1) the rev parameter to the view script or (2) the query string to the login script.
References 4 Total
- exchange.xforce.ibmcloud.com: twiki-multiple-xss(62557) vdb-entry
- secunia.com: 41796 third-party-advisory
- http://twiki.org/cgi-bin/view/Codev/SecurityAlert-CVE-2010-3841
- securityfocus.com: 44103 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 4 Total
- exchange.xforce.ibmcloud.com: twiki-multiple-xss(62557) vdb-entryx_transferred
- secunia.com: 41796 third-party-advisoryx_transferred
- http://twiki.org/cgi-bin/view/Codev/SecurityAlert-CVE-2010-3841 x_transferred
- securityfocus.com: 44103 vdb-entryx_transferred