Description

Cross-site scripting (XSS) vulnerability in the table feature in PmWiki 2.2.15 allows remote authenticated users to inject arbitrary web script or HTML via the width attribute.

Remediation

References

CVE-2010-1481

Related Vulnerabilities

MediaWiki Improper Authentication Vulnerability (CVE-2014-2665)

WebERP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-13292)

MySQL CVE-2016-0646 Vulnerability (CVE-2016-0646)

Oracle JRE CVE-2012-5081 Vulnerability (CVE-2012-5081)

EspoCRM Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-5965)

Severity

Low

Classification

CVE-2010-1481 CWE-707

Tags

Missing Update Known Vulnerabilities