CVE-2010-1238Moinmoin vulnerability

CWE-2646 documents5 sources
Severity
5.0MEDIUMNVD
EPSS
0.4%
top 40.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Moinmo Moinmoin
Timeline
PublishedApr 5
Latest updateMay 2

Description

MoinMoin 1.7.1 allows remote attackers to bypass the textcha protection mechanism by modifying the textcha-question and textcha-answer fields to have empty values.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDmoinmo/moinmoin1.7.1

🔴Vulnerability Details

2
GHSA
GHSA-qwwp-27qm-g533: MoinMoin 12022-05-02
OSV
CVE-2010-1238: MoinMoin 12010-04-05

📋Vendor Advisories

1
Ubuntu
MoinMoin vulnerabilities2010-04-08

💬Community

2
Bugzilla
CVE-2010-1238 MoinMoin textcha bypass flaw [fedora-all]2010-04-07
Bugzilla
CVE-2010-1238 MoinMoin textcha bypass flaw2010-04-07
CVE-2010-1238 — Moinmo Moinmoin vulnerability | cvebase