What is CVE-2012-6081?

CVE-2012-6081 is a vulnerability in Moinmo Moinmoin. Published 2013-01-03.

Is CVE-2012-6081 known to be exploited?

7 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Moinmo Moinmoin

CVE-2012-6081

Multiple unrestricted file upload vulnerabilities in the (1) twikidraw (action/twikidraw.py) and (2) anywikidraw (action/anywikidraw.py) actions in MoinMoin before 1.9.6 allow remote authenticated users with write permissions to execute ar…

EPSS: 0.736 (98.8th percentile) — read the EPSS interpretation.

Affected products

Moinmo Moinmoin — versions 0.1, 0.2, 0.3
N/a — versions n/a

Public proof-of-concept exploits

References

secalert@redhat.com (x_refsource_CONFIRM)
secalert@redhat.com (x_refsource_CONFIRM, Vendor Advisory)
51663 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
secalert@redhat.com (x_refsource_CONFIRM, Exploit, Patch)
DSA-2593 (vendor-advisory, x_refsource_DEBIAN)
secalert@redhat.com (x_refsource_MISC)
57082 (vdb-entry, x_refsource_BID)
[oss-security] 20121229 CVE request: MoinMoin Wiki (remote code execution vulnerability) (mailing-list, x_refsource_MLIST)
51676 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
[oss-security] 20121229 Re: CVE request: MoinMoin Wiki (remote code execution vulnerability) (mailing-list, x_refsource_MLIST)

Frequently asked questions

What is CVE-2012-6081?: CVE-2012-6081 is a vulnerability in Moinmo Moinmoin. Published 2013-01-03.
Is CVE-2012-6081 known to be exploited?: 7 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.