Search for packages
| purl | pkg:pypi/moin@1.7.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-5k2q-y419-qbcf
Aliases: CVE-2009-4762 GHSA-jj23-fj2v-m872 PYSEC-2010-13 |
MoinMoin 1.7.x before 1.7.3 and 1.8.x before 1.8.3 checks parent ACLs in certain inappropriate circumstances during processing of hierarchical ACLs, which allows remote attackers to bypass intended access restrictions by requesting an item, a different vulnerability than CVE-2008-6603. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-gjam-kx3q-qyak
Aliases: CVE-2008-3381 GHSA-q7q4-5g8p-33fq PYSEC-2008-13 |
Multiple cross-site scripting (XSS) vulnerabilities in macro/AdvancedSearch.py in moin (and MoinMoin) 1.6.3 and 1.7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-02T04:42:21.023658+00:00 | GitLab Importer | Affected by | VCID-5k2q-y419-qbcf | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/moin/CVE-2009-4762.yml | 38.6.0 |
| 2026-06-02T04:42:18.057475+00:00 | GitLab Importer | Affected by | VCID-gjam-kx3q-qyak | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/moin/CVE-2008-3381.yml | 38.6.0 |
| 2026-06-02T04:03:07.610373+00:00 | Pypa Importer | Affected by | VCID-gjam-kx3q-qyak | https://github.com/pypa/advisory-database/blob/main/vulns/moin/PYSEC-2008-13.yaml | 38.6.0 |