MoinMoin -- cross-site scripting vulnerabilities

Affected packages
		moinmoin	<	1.9.3

Details

The MoinMoin developers reports:

Fix XSS in Despam action (CVE-2010-0828)

[source]

Fix XSS issues

by escaping template name in messages

by fixing other places that had similar issues

[source]

Bugtraq ID	39110
CVE Name	CVE-2010-0828
URL	http://hg.moinmo.in/moin/1.9/raw-file/1.9.3/docs/CHANGES
URL	http://moinmo.in/MoinMoinBugs/1.9.2UnescapedInputForThemeAddMsg