CVE-2007-2637
EPSS 0.57%MoinMoin Improper ACL handling for calendars and includes
Published: 5/1/2022Modified: 6/4/2024
Description
MoinMoin before 20070507 does not properly enforce ACLs for calendars and includes, which allows remote attackers to read certain pages via unspecified vectors.
Affected packages (2)
- Debian/moinfrom 0, < 1.5.7-2
- PyPI/moinfrom 0, < 1.5.8
References (8)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2007-2637
- WEBhttp://osvdb.org/36269
- WEBhttp://secunia.com/advisories/25208
- WEBhttp://secunia.com/advisories/29262
- WEBhttps://exchange.xforce.ibmcloud.com/vulnerabilities/34474
- WEBhttps://moinmo.in/MoinMoinRelease1.5/CHANGES
- WEBhttp://www.debian.org/security/2008/dsa-1514
- WEBhttp://www.ubuntu.com/usn/usn-458-1