Description

Cross-site scripting (XSS) vulnerability in the Search module in PmWiki up to 2.0.12 allows remote attackers to inject arbitrary web script or HTML via the q parameter.

Remediation

References

CVE-2005-3849

Related Vulnerabilities

WordPress Plugin YITH Maintenance Mode Cross-Site Scripting (1.1.4)

Oracle Database Server CVE-2011-0880 Vulnerability (CVE-2011-0880)

WordPress Plugin Post Duplicator Cross-Site Scripting (2.16)

Roundcube Improper Access Control Vulnerability (CVE-2016-9920)

WordPress Plugin Mobile Events Manager CSV Injection (1.4.7)

Severity

Medium

Classification

CVE-2005-3849

Tags

Missing Update Known Vulnerabilities