Moinmoin@1.8.1 Security Vulnerabilities and Issues — Moinmoin@1.8.1 CVE List

Lucene search

MoinmoMoinmoin1.8.1

5 matches found

CVE•added 2010/02/26 7:30 p.m.•67 views

CVE-2010-0717

The default configuration of cfg.packagepages_actions_excluded in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors.

7.5CVSS6.3AI score0.00594EPSS

CVE•added 2010/08/05 1:22 p.m.•63 views

CVE-2010-2487

Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.7.3 and earlier, 1.8.x before 1.8.8, and 1.9.x before 1.9.3 allow remote attackers to inject arbitrary web script or HTML via crafted content, related to (1) Page.py, (2) PageEditor.py, (3) PageGraphicalEditor.py, (4) action/CopyPage...

4.3CVSS5.5AI score0.01289EPSS

CVE•added 2010/02/26 7:30 p.m.•58 views

CVE-2010-0669

MoinMoin before 1.8.7 and 1.9.x before 1.9.2 does not properly sanitize user profiles, which has unspecified impact and attack vectors.

7.5CVSS6.3AI score0.01049EPSS

CVE•added 2010/02/26 7:30 p.m.•52 views

CVE-2010-0668

Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or OpenID configured.

6.8CVSS6.2AI score0.01524EPSS

CVE•added 2010/03/29 8:30 p.m.•44 views

CVE-2009-4762

MoinMoin 1.7.x before 1.7.3 and 1.8.x before 1.8.3 checks parent ACLs in certain inappropriate circumstances during processing of hierarchical ACLs, which allows remote attackers to bypass intended access restrictions by requesting an item, a different vulnerability than CVE-2008-6603.

7.5CVSS6.5AI score0.00759EPSS