| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2010-0717 | 7.5 |
The default configuration of cfg.packagepages_actions_excluded in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors.
|
17-08-2017 - 01:32 | 26-02-2010 - 19:30 | |
| CVE-2010-0668 | 6.8 |
Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages acti
|
17-08-2017 - 01:32 | 26-02-2010 - 19:30 | |
| CVE-2010-2487 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.7.3 and earlier, 1.8.x before 1.8.8, and 1.9.x before 1.9.3 allow remote attackers to inject arbitrary web script or HTML via crafted content, related to (1) Page.py, (2) PageEditor.py
|
05-08-2010 - 13:22 | 05-08-2010 - 13:22 | |
| CVE-2010-0669 | 7.5 |
MoinMoin before 1.8.7 and 1.9.x before 1.9.2 does not properly sanitize user profiles, which has unspecified impact and attack vectors.
|
31-03-2010 - 05:41 | 26-02-2010 - 19:30 |