MoinMoin Wiki Superuser Lists Unspecified Vulnerability Network Vulnerability

Summary

This host is running MoinMoin Wiki and is prone to unspecified vulnerabilities.

Impact

Impact is currently unknown. Impact Level: Application

Solution

Upgrade to MoinMoin Wiki 1.8.7 or 1.9.2, For updates refer to http://moinmo.in/MoinMoinDownload

Insight

Unspecified error is present related to configurations that have a non-empty superuser list, when 'xmlrpc', 'SyncPages' actions are enabled or OpenID configured.

Affected

MoinMoin Wiki version 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 on all platforms.

References

http://moinmo.in/SecurityFixes
http://secunia.com/advisories/38444
http://www.openwall.com/lists/oss-security/2010/02/15/2
http://www.vupen.com/english/advisories/2010/0266
http://xforce.iss.net/xforce/xfdb/56002

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-0668

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Admidio get_file.php Remote File Disclosure Vulnerability
Apache mod_proxy_ftp Wildcard Characters XSS Vulnerability
Apache Struts Cross Site Scripting Vulnerability
/doc directory browsable ?
Apache Struts2 'XWork' Information Disclosure Vulnerability

Take action and discover your vulnerabilities