Описание
MoinMoin improper sanitizes user profiles
MoinMoin before 1.8.7 and 1.9.x before 1.9.2 does not properly sanitize user profiles, which has unspecified impact and attack vectors.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2010-0669
- https://github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2010-2.yaml
- https://web.archive.org/web/20111225112846/http://secunia.com/advisories/38903
- https://web.archive.org/web/20140806190238/http://secunia.com/advisories/38444
- https://web.archive.org/web/20200228174758/http://www.securityfocus.com/bid/38023
- http://hg.moinmo.in/moin/1.8/raw-file/1.8.7/docs/CHANGES
- http://moinmo.in/MoinMoinRelease1.8
- http://moinmo.in/SecurityFixes
- http://www.debian.org/security/2010/dsa-2014
- http://www.openwall.com/lists/oss-security/2010/02/15/2
- http://www.openwall.com/lists/oss-security/2010/02/15/4
- http://www.openwall.com/lists/oss-security/2010/02/21/2
Пакеты
Наименование
moin
pip
Затронутые версииВерсия исправления
< 1.8.7
1.8.7
Наименование
moin
pip
Затронутые версииВерсия исправления
>= 1.9, < 1.9.2
1.9.2
EPSS
Процентиль: 77%
0.01049
Низкий
CVE ID
Связанные уязвимости
ubuntu
почти 16 лет назад
MoinMoin before 1.8.7 and 1.9.x before 1.9.2 does not properly sanitize user profiles, which has unspecified impact and attack vectors.
redhat
почти 16 лет назад
MoinMoin before 1.8.7 and 1.9.x before 1.9.2 does not properly sanitize user profiles, which has unspecified impact and attack vectors.
nvd
почти 16 лет назад
MoinMoin before 1.8.7 and 1.9.x before 1.9.2 does not properly sanitize user profiles, which has unspecified impact and attack vectors.
debian
почти 16 лет назад
MoinMoin before 1.8.7 and 1.9.x before 1.9.2 does not properly sanitiz ...
EPSS
Процентиль: 77%
0.01049
Низкий