Vulnerabilities > Moinmo > Moinmoin > 1.7.1

DATE CVE VULNERABILITY TITLE RISK
2010-03-29 CVE-2009-4762 Permissions, Privileges, and Access Controls vulnerability in Moinmo Moinmoin
MoinMoin 1.7.x before 1.7.3 and 1.8.x before 1.8.3 checks parent ACLs in certain inappropriate circumstances during processing of hierarchical ACLs, which allows remote attackers to bypass intended access restrictions by requesting an item, a different vulnerability than CVE-2008-6603.
network
low complexity
moinmo CWE-264
7.5
7.5
2010-02-26 CVE-2010-0717 Configuration vulnerability in Moinmo Moinmoin
The default configuration of cfg.packagepages_actions_excluded in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors.
network
low complexity
moinmo CWE-16
7.5
7.5
2010-02-26 CVE-2010-0669 Security vulnerability in MoinMoin
MoinMoin before 1.8.7 and 1.9.x before 1.9.2 does not properly sanitize user profiles, which has unspecified impact and attack vectors.
network
low complexity
moinmo
7.5
7.5
2010-02-26 CVE-2010-0668 Security vulnerability in MoinMoin
Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or OpenID configured.
network
moinmo
6.8
6.8