CVE		CVE-2007-0857
Статус		Candidate
Описание		Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin before 1.5.7 allow remote attackers to inject arbitrary web script or HTML via (1) the page info, or the page name in a (2) AttachFile, (3) RenamePage, or (4) LocalSiteMap action.
Важность		Low
CVSS score		2,3
CVSS vector		(AV:R/AC:L/Au:NR/C:N/I:P/A:N/B:N)
Phase		Assigned (08.02.2007)
NVD:		http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-0857
References		BID : 22506
		CONFIRM : http://moinmoin.wikiwikiweb.de/MoinMoinRelease1.5/...
		FRSIRT : ADV-2007-0553
		OSVDB : 31874
		SECUNIA : 24096
		SECUNIA : 24117
		UBUNTU : USN-421-1
		XF : moinmoin-pageinfo-pagename-xss(32377)
SecurityVulns:		Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl )