Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-4787-1:2891F
HistoryNov 09, 2020 - 8:27 p.m.

[SECURITY] [DSA 4787-1] moin security update

2020-11-0920:27:35
lists.debian.org
10

0.014 Low

EPSS

Percentile

86.3%

JSON

Debian Security Advisory DSA-4787-1 [email protected]
https://www.debian.org/security/ Salvatore Bonaccorso
November 09, 2020 https://www.debian.org/security/faq

Package : moin
CVE ID : CVE-2020-15275 CVE-2020-25074

Two vulnerabilities were discovered in moin, a Python clone of WikiWiki.

CVE-2020-15275

Catarina Leite discovered that moin is prone to a stored XSS
vulnerability via SVG attachments.

CVE-2020-25074

Michael Chapman discovered that moin is prone to a remote code
execution vulnerability via the cache action.

For the stable distribution (buster), these problems have been fixed in
version 1.9.9-1+deb10u1.

We recommend that you upgrade your moin packages.

For the detailed security status of moin please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/moin

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

Related

osv 9
openvas 5
ubuntu 1
nessus 5
suse 2
debian 2
freebsd 1
debiancve 2
ubuntucve 2
prion 2
veracode 2
cvelist 2
nvd 2
cve 2
github 2
redhatcve 1
osv
osv
moin - security update
2020-11-10 00:00:00
moin vulnerabilities
2020-11-11 13:46:22
moin - security update
2020-11-09 00:00:00
openvas
openvas
MoinMoin < 1.9.11 Multiple Vulnerabilities - Linux
2020-11-11 00:00:00
Ubuntu: Security Advisory (USN-4629-1)
2020-11-12 00:00:00
Debian: Security Advisory (DLA-2446-1)
2020-11-11 00:00:00
ubuntu
ubuntu
MoinMoin vulnerabilities
2020-11-11 00:00:00
nessus
nessus
Debian DLA-2446-1 : moin security update
2020-11-12 00:00:00
Debian DSA-4787-1 : moin - security update
2020-11-10 00:00:00
FreeBSD : moinmoin -- multiple vulnerabilities (abed4ff0-7da1-4236-880d-de33e4895315)
2021-01-20 00:00:00
suse
suse
Security update for moinmoin-wiki (important)
2020-11-23 00:00:00
Security update for moinmoin-wiki (important)
2020-11-19 00:00:00
debian
debian
[SECURITY] [DLA 2446-1] moin security update
2020-11-10 21:43:54
[SECURITY] [DSA 4787-1] moin security update
2020-11-09 20:27:35
freebsd
freebsd
moinmoin -- multiple vulnerabilities
2020-11-08 00:00:00
debiancve
debiancve
CVE-2020-25074
2020-11-10 17:15:12
CVE-2020-15275
2020-11-11 16:15:13
ubuntucve
ubuntucve
CVE-2020-25074
2020-11-09 00:00:00
CVE-2020-15275
2020-11-09 00:00:00
prion
prion
Directory traversal
2020-11-10 17:15:00
Design/Logic Flaw
2020-11-11 16:15:00
veracode
veracode
Remote Code Execution
2020-11-10 03:43:34
Cross-Site Scripting
2020-11-10 03:54:16
cvelist
cvelist
CVE-2020-25074
2020-11-10 16:48:21
CVE-2020-15275 malicious SVG attachment causing stored XSS vulnerability in MoinMoin
2020-11-11 15:45:15
nvd
nvd
CVE-2020-25074
2020-11-10 17:15:12
CVE-2020-15275
2020-11-11 16:15:13
cve
cve
CVE-2020-25074
2020-11-10 17:15:12
CVE-2020-15275
2020-11-11 16:15:13
github
github
remote code execution via cache action in MoinMoin
2020-11-11 15:54:51
malicious SVG attachment causing stored XSS vulnerability
2020-11-11 15:54:41
redhatcve
redhatcve
CVE-2020-15275
2022-05-21 00:23:34

0.014 Low

EPSS

Percentile

86.3%

JSON
Related for DEBIAN:DSA-4787-1:2891F
osv9openvas5ubuntu1nessus5suse2debian2freebsd1debiancve2ubuntucve2prion2veracode2cvelist2nvd2cve2github2redhatcve1