cbcvebase.
CVE-2020-25074
published 2020-11-10

CVE-2020-25074: The cache action in action/cache.py in MoinMoin through 1.9.10 allows directory traversal through a crafted HTTP request. An attacker who can upload…

PriorityP262critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
6.12%
92.5th percentile
The cache action in action/cache.py in MoinMoin through 1.9.10 allows directory traversal through a crafted HTTP request. An attacker who can upload attachments to the wiki can use this to achieve remote code execution.

Affected

3 ranges
VendorProductVersion rangeFixed in
debiandebian_linux
debiandebian_linux
moinmomoinmoin<= 1.9.10

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability exists in the cache action handler within action/cache.py in MoinMoin through 1.9.10; monitor for directory traversal patterns in requests targeting this endpoint
  • Attack vector requires the ability to upload attachments to the wiki; monitor for attachment uploads followed by unusual cache action requests as a combined attack chain indicator
  • ·Affected versions are MoinMoin through 1.9.10; only instances exposing attachment upload functionality to untrusted users are exploitable

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv5.4MEDIUM
vendor_ubuntu8.7HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.