—
PYSEC-2026-675
MoinMoin Improper ACL handling for calendars and includes
Details
MoinMoin before 20070507 does not properly enforce ACLs for calendars and includes, which allows remote attackers to read certain pages via unspecified vectors.
Are you affected?
Enter the version of the package you're using.
Affected packages
References
- https://nvd.nist.gov/vuln/detail/CVE-2007-2637 [ADVISORY]
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34474 [WEB]
- https://moinmo.in/MoinMoinRelease1.5/CHANGES [WEB]
- http://osvdb.org/36269 [WEB]
- http://secunia.com/advisories/25208 [WEB]
- http://secunia.com/advisories/29262 [WEB]
- http://www.debian.org/security/2008/dsa-1514 [WEB]
- http://www.ubuntu.com/usn/usn-458-1 [WEB]
- https://pypi.org/project/moin [PACKAGE]
- https://github.com/advisories/GHSA-cmg7-xr2j-4r9v [ADVISORY]