CVE-2008-0782

2008-02-14T21:00:00
ID CVE-2008-0782
Type cve
Reporter cve@mitre.org
Modified 2018-10-03T21:53:00

Description

Directory traversal vulnerability in MoinMoin 1.5.8 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) in the MOIN_ID user ID in a cookie for a userform action. NOTE: this issue can be leveraged for PHP code execution via the quicklinks parameter.