Description

Cross-site scripting (XSS) vulnerability in the Search module in PmWiki up to 2.0.12 allows remote attackers to inject arbitrary web script or HTML via the q parameter.

Remediation

References

CVE-2005-3849

Related Vulnerabilities

WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker Cross-Site Scripting (7.3.1)

WordPress Plugin PowerPack Lite for Beaver Builder Local File Inclusion (1.3.0.3)

MySQL CVE-2017-3459 Vulnerability (CVE-2017-3459)

WordPress Plugin Nextend Facebook Connect Cross-Site Scripting (1.5.0)

Magento Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-8134)

Severity

Medium

Classification

CVE-2005-3849

Tags

Missing Update Known Vulnerabilities