Lucene search

K
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2008-0782
HistoryFeb 14, 2008 - 9:00 p.m.

CVE-2008-0782

2008-02-1421:00:00
Debian Security Bug Tracker
security-tracker.debian.org
8

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.083 Low

EPSS

Percentile

94.4%

Directory traversal vulnerability in MoinMoin 1.5.8 and earlier allows remote attackers to overwrite arbitrary files via a … (dot dot) in the MOIN_ID user ID in a cookie for a userform action. NOTE: this issue can be leveraged for PHP code execution via the quicklinks parameter.

OSVersionArchitecturePackageVersionFilename
Debian10allmoin< 1.5.8-5.1moin_1.5.8-5.1_all.deb

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.083 Low

EPSS

Percentile

94.4%