—
PYSEC-2026-679
MoinMoin Insertion of Sensitive Information into Log File
Details
An information leak was discovered in MoinMoin's debug reporting version 1.5.7, which could expose information about the versions of software running on the host system. MoinMoin administrators can add "show_traceback=0" to their site configurations to disable debug tracebacks.
Are you affected?
Enter the version of the package you're using.
Affected packages
References
- https://nvd.nist.gov/vuln/detail/CVE-2007-0902 [ADVISORY]
- https://moinmo.in/MoinMoinRelease1.5/CHANGES [WEB]
- http://osvdb.org/33173 [WEB]
- http://secunia.com/advisories/24138 [WEB]
- http://secunia.com/advisories/24244 [WEB]
- http://www.securityfocus.com/bid/22515 [WEB]
- http://www.ubuntu.com/usn/usn-423-1 [WEB]
- https://pypi.org/project/moin [PACKAGE]
- https://github.com/advisories/GHSA-mxh8-xgq9-w782 [ADVISORY]