Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:60555
HistoryJan 05, 2013 - 12:00 a.m.

MoinMoin action/twikidraw.py和action/anywikidraw.py任意代码执行漏洞

2013-01-0500:00:00
Root
www.seebug.org
95

EPSS

0.955

Percentile

99.4%

JSON

BUGTRAQ ID: 57082
CVE(CAN) ID: CVE-2012-6081

MoinMoin是一个基于Python环境的wiki引擎程序,支持包括中文在内的多语种特性。

MoinMoin 1.9.6之前版本中 twikidraw (action/twikidraw.py) 、anywikidraw (action/anywikidraw.py) 脚本存在多个文件上传漏洞,可允许具有写权限的、经过身份验证的远程攻击者通过上传带有可执行扩展名的文件,然后直接请求该文件,执行任意代码。
0
MoinMoin Wiki Engine 1.9.3
厂商补丁:

MoinMoin

目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:

http://moinmo.in/

Related

github 2
ubuntucve 2
osv 2
nvd 2
checkpoint_advisories 1
cvelist 2
dsquare 1
debiancve 2
cve 2
packetstorm 1
prion 2
zdt 1
nessus 9
freebsd 1
thn 2
openvas 10
fedora 3
gentoo 1
github
github
MoinMoin Multiple unrestricted file upload vulnerabilities
2022-05-17 04:56:26
MoinMoin Multiple vulnerable to directory traversal
2022-05-17 05:17:04
ubuntucve
ubuntucve
CVE-2012-6081
2012-12-29 00:00:00
CVE-2012-6495
2013-01-03 00:00:00
osv
osv
PYSEC-2013-6
2013-01-03 01:55:00
PYSEC-2013-7
2013-01-03 01:55:00
nvd
nvd
CVE-2012-6081
2013-01-03 01:55:04
CVE-2012-6495
2013-01-03 01:55:04
checkpoint_advisories
checkpoint_advisories
MoinMoin twikidraw Action Directory Traversal (CVE-2012-6081)
2013-08-06 00:00:00
cvelist
cvelist
CVE-2012-6081
2013-01-03 01:00:00
CVE-2012-6495
2022-10-03 16:15:28
dsquare
dsquare
MoinMoin 1.9.5 RCE
2013-02-08 00:00:00
debiancve
debiancve
CVE-2012-6081
2013-01-03 01:55:04
CVE-2012-6495
2022-10-03 16:15:28
cve
cve
CVE-2012-6081
2013-01-03 01:55:04
CVE-2012-6495
2022-10-03 16:15:28
packetstorm
packetstorm
MoinMoin twikidraw Action Traversal File Upload
2013-06-19 00:00:00
prion
prion
Unrestricted file upload
2013-01-03 01:55:00
Directory traversal
2013-01-03 01:55:00
zdt
zdt
MoinMoin twikidraw Action Traversal File Upload Vulnerability
2013-06-19 00:00:00
nessus
nessus
MoinMoin < 1.9.6 Multiple Vulnerabilities
2013-02-28 00:00:00
MoinMoin rsslink() Function page_name Parameter XSS
2013-02-28 00:00:00
FreeBSD : moinmoin -- Multiple vulnerabilities (a264b1b0-5726-11e2-9483-14dae938ec40)
2013-01-07 00:00:00
freebsd
freebsd
moinmoin -- Multiple vulnerabilities
2012-12-29 00:00:00
thn
thn
Official Debian and Python Wiki Servers Compromised
2013-01-09 04:49:00
Official Debian and Python Wiki Servers Compromised
2013-01-09 15:49:00
openvas
openvas
Debian Security Advisory DSA 2593-1 (moin - several vulnerabilities)
2013-09-18 00:00:00
MoinMoin Multiple Vulnerabilities
2013-03-21 00:00:00
Gentoo Security Advisory GLSA 201309-14
2015-09-29 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: moin-1.9.6-1.fc18
2013-01-20 02:56:24
[SECURITY] Fedora 16 Update: moin-1.9.6-1.fc16
2013-01-23 01:38:58
[SECURITY] Fedora 17 Update: moin-1.9.6-1.fc17
2013-01-23 02:00:37
gentoo
gentoo
MoinMoin: Multiple vulnerabilities
2013-09-24 00:00:00

EPSS

0.955

Percentile

99.4%

JSON
Related for SSV:60555
github2ubuntucve2osv2nvd2checkpoint_advisories1cvelist2dsquare1debiancve2cve2packetstorm1prion2zdt1nessus9freebsd1thn2openvas10fedora3gentoo1