Vulnerabilities > CVE-2008-6548 - Missing Authorization vulnerability in Moinmo Moinmoin 1.6.1

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

moinmo

CWE-862

NVD

Published: 2009-03-30

Updated: 2024-02-02

Summary

The rst parser (parser/text_rst.py) in MoinMoin 1.6.1 does not check the ACL of an included page, which allows attackers to read unauthorized include files via unknown vectors.

Vulnerable Configurations

Part	Description	Count
Application	Moinmo Moinmo Moinmoin 1.6.1	1

Common Weakness Enumeration (CWE)

CWE-862 - Missing Authorization

References

http://hg.moinmo.in/moin/1.6/rev/35ff7a9b1546
http://osvdb.org/48877
http://moinmo.in/SecurityFixes