Debian Linux Security Advisory 2083-1 – It was discovered that moin, a python clone of WikiWiki, does not sufficiently sanitize parameters when passing them to the add_msg function. This allows a remote attackers to conduct cross-site scripting (XSS) attacks for example via the template parameter.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/92360/dsa-2083-1.txt
Source: https://packetstormsecurity.com/files/92360/Debian-Linux-Security-Advisory-2083-1.html