Description

Cross-site scripting (XSS) vulnerability in the Search module in PmWiki up to 2.0.12 allows remote attackers to inject arbitrary web script or HTML via the q parameter.

Remediation

References

CVE-2005-3849

Related Vulnerabilities

Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5577)

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-6514)

WordPress Plugin WordPress Affiliates-SliceWP Cross-Site Scripting (1.0.45)

WordPress Plugin Google Sitemap by BestWebSoft Cross-Site Scripting (3.0.7)

WordPress Plugin YITH WooCommerce Gift Cards Premium Unspecified Vulnerability (3.20.0)

Severity

Medium

Classification

CVE-2005-3849

Tags

Missing Update Known Vulnerabilities