CVE-2010-0668 Information

Feb 14, 2021 cve

Description

Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x 1.8.x before 1.8.7 and 1.9.x before 1.9.2 has unknown impact and attack vectors related to configurations that have a non-empty superuser list the xmlrpc action enabled the SyncPages action enabled or OpenID configured.

Reference

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=569975 http://hg.moinmo.in/moin/1.8/raw-file/1.8.7/docs/CHANGES http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035374.html http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035438.html http://marc.info/?l=oss-security&m=126625972814888&w=2 http://marc.info/?l=oss-security&m=126676896601156&w=2 http://moinmo.in/MoinMoinRelease1.8 http://moinmo.in/SecurityFixes http://secunia.com/advisories/38444 http://secunia.com/advisories/38709 http://secunia.com/advisories/38903 http://www.debian.org/security/2010/dsa-2014 http://www.openwall.com/lists/oss-security/2010/02/15/2 http://www.osvdb.org/62043 http://www.securityfocus.com/bid/38023 http://www.vupen.com/english/advisories/2010/0266 http://www.vupen.com/english/advisories/2010/0600 https://bugzilla.redhat.com/show_bug.cgi?id=565604 https://exchange.xforce.ibmcloud.com/vulnerabilities/56002

Share on: