Search for packages
| purl | pkg:pypi/moin@1.8.3 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-5k2q-y419-qbcf | MoinMoin 1.7.x before 1.7.3 and 1.8.x before 1.8.3 checks parent ACLs in certain inappropriate circumstances during processing of hierarchical ACLs, which allows remote attackers to bypass intended access restrictions by requesting an item, a different vulnerability than CVE-2008-6603. |
CVE-2009-4762
GHSA-jj23-fj2v-m872 PYSEC-2010-13 |
| VCID-agw2-ws4p-k3dd | Multiple cross-site scripting (XSS) vulnerabilities in action/AttachFile.py in MoinMoin 1.8.2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) an AttachFile sub-action in the error_msg function or (2) multiple vectors related to package file errors in the upload_form function, different vectors than CVE-2009-0260. |
CVE-2009-1482
GHSA-4pfg-2frf-f67v PYSEC-2009-6 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-02T04:42:23.565808+00:00 | GitLab Importer | Fixing | VCID-agw2-ws4p-k3dd | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/moin/CVE-2009-1482.yml | 38.6.0 |
| 2026-06-02T04:42:21.039673+00:00 | GitLab Importer | Fixing | VCID-5k2q-y419-qbcf | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/moin/CVE-2009-4762.yml | 38.6.0 |
| 2026-06-02T04:03:09.446915+00:00 | Pypa Importer | Fixing | VCID-5k2q-y419-qbcf | https://github.com/pypa/advisory-database/blob/main/vulns/moin/PYSEC-2010-13.yaml | 38.6.0 |
| 2026-06-02T04:03:08.200175+00:00 | Pypa Importer | Fixing | VCID-agw2-ws4p-k3dd | https://github.com/pypa/advisory-database/blob/main/vulns/moin/PYSEC-2009-6.yaml | 38.6.0 |