| Max CVSS | 5.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-1099 | 5.0 |
_macro_Getval in wikimacro.py in MoinMoin 1.5.8 and earlier does not properly enforce ACLs, which allows remote attackers to read protected pages.
|
03-10-2018 - 21:53 | 05-03-2008 - 20:44 | |
| CVE-2008-0781 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in action/AttachFile.py in MoinMoin 1.5.8 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) message, (2) pagename, and (3) target filenames.
|
03-10-2018 - 21:53 | 14-02-2008 - 21:00 | |
| CVE-2008-0780 | 4.3 |
Cross-site scripting (XSS) vulnerability in MoinMoin 1.5.x through 1.5.8 and 1.6.x before 1.6.1 allows remote attackers to inject arbitrary web script or HTML via the login action.
|
03-10-2018 - 21:53 | 14-02-2008 - 21:00 | |
| CVE-2008-1098 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.5.8 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) certain input processed by formatter/text_gedit.py (aka the gui editor formatter); (2) a page name
|
03-10-2018 - 21:53 | 05-03-2008 - 20:44 | |
| CVE-2008-0782 | 5.0 |
Directory traversal vulnerability in MoinMoin 1.5.8 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) in the MOIN_ID user ID in a cookie for a userform action. NOTE: this issue can be leveraged for PHP code executio
|
03-10-2018 - 21:53 | 14-02-2008 - 21:00 |