CVE-2006-3399 Information

Description

Cross-site scripting (XSS) vulnerability in wiki.php in MoniWiki before 1.1.2-20060702 allows remote attackers to inject arbitrary Javascript via the URL which is reflected back in an error message a variant of CVE-2004-1632.

Reference

http://secunia.com/advisories/20909 http://securityreason.com/securityalert/1196 http://www.osvdb.org/26958 http://www.securityfocus.com/archive/1/438808/100/0/threaded http://www.securityfocus.com/archive/1/438952/100/0/threaded http://www.vupen.com/english/advisories/2006/2631 https://exchange.xforce.ibmcloud.com/vulnerabilities/27491 moniwiki-wiki-url-xss(27491)