Vulnerabilities > Moinmo > Moinmoin > 1.7.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-03-29 | CVE-2009-4762 | Permissions, Privileges, and Access Controls vulnerability in Moinmo Moinmoin MoinMoin 1.7.x before 1.7.3 and 1.8.x before 1.8.3 checks parent ACLs in certain inappropriate circumstances during processing of hierarchical ACLs, which allows remote attackers to bypass intended access restrictions by requesting an item, a different vulnerability than CVE-2008-6603. | 7.5 |
2010-02-26 | CVE-2010-0717 | Configuration vulnerability in Moinmo Moinmoin The default configuration of cfg.packagepages_actions_excluded in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors. | 7.5 |
2010-02-26 | CVE-2010-0669 | Security vulnerability in MoinMoin MoinMoin before 1.8.7 and 1.9.x before 1.9.2 does not properly sanitize user profiles, which has unspecified impact and attack vectors. | 7.5 |
2010-02-26 | CVE-2010-0668 | Security vulnerability in MoinMoin Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or OpenID configured. network moinmo | 6.8 |