First published: Wed Dec 10 2008(Updated: )
Cross-site scripting (XSS) vulnerability in TWiki before 4.2.4 allows remote attackers to inject arbitrary web script or HTML via the %URLPARAM{}% variable.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Twiki Twiki | =2000-12-01 | |
Twiki Twiki | =2004-09-02 | |
Twiki Twiki | =4.1.1 | |
Twiki Twiki | =4.0.1 | |
Twiki Twiki | =2001-09-01 | |
Twiki Twiki | =2003-02-01 | |
Twiki Twiki | =4.0.3 | |
Twiki Twiki | =4.0.4 | |
Twiki Twiki | =2001-12-01 | |
Twiki Twiki | =2004-09-04 | |
Twiki Twiki | =4.2.1 | |
Twiki Twiki | =2004-09-01 | |
Twiki Twiki | =2004-09-03 | |
Twiki Twiki | =4.2.0 | |
Twiki Twiki | <=4.2.3 | |
Twiki Twiki | =4.0.0 | |
Twiki Twiki | =4.1.0 | |
Twiki Twiki | =4.2.2 | |
Twiki Twiki | =4.0.2 | |
Twiki Twiki | =4.0.5 | |
Twiki Twiki | =4.1.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.