Vulnerability in Moinmo Moinmoin
CVE-2010-0717
The default configuration of cfg.packagepages_actions_excluded in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors.
EPSS: 0.006 (69.7th percentile) — read the EPSS interpretation.
Affected products
- Moinmo Moinmoin — versions 1.5.7, 1.6.4, 1.5.2
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_CONFIRM)
- cve@mitre.org (x_refsource_CONFIRM)
- 38903 (x_refsource_SECUNIA, third-party-advisory)
- DSA-2014 (vendor-advisory, x_refsource_DEBIAN)
- [oss-security] 20100215 CVE Request -- MoinMoin -- 1.8.7 (mailing-list, x_refsource_MLIST)
- ADV-2010-0600 (vdb-entry, x_refsource_VUPEN)
- moinmoin-cfgpackagepages-unspecified(56595) (vdb-entry, x_refsource_XF)