CVE-2005-3849

EIP tracks 1 public exploit for CVE-2005-3849. PoCs published by Moritz Naumann.

AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in PmWiki by injecting malicious script code via the search query parameter. The PoC uses an onMouseOver event to trigger an alert box, proving arbitrary script execution in the context of the affected site.

Cross-site scripting (XSS) vulnerability in the Search module in PmWiki up to 2.0.12 allows remote attackers to inject arbitrary web script or HTML via the q parameter.