This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:moinmo:moinmoin
Detail
VendorMoinmoFirst view 2009-03-29
ProductMoinmoinLast view 2013-01-02
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:moinmo:moinmoin:1.9.54
cpe:/a:moinmo:moinmoin:1.9.44
cpe:/a:moinmo:moinmoin:1.9.34
cpe:/a:moinmo:moinmoin:1.9.28
cpe:/a:moinmo:moinmoin:1.9.19
Hide | Show 74 More...
CPE NameAffected CVE
cpe:/a:moinmo:moinmoin:1.9.010
cpe:/a:moinmo:moinmoin:1.8.83
cpe:/a:moinmo:moinmoin:1.8.75
cpe:/a:moinmo:moinmoin:1.8.67
cpe:/a:moinmo:moinmoin:1.8.47
cpe:/a:moinmo:moinmoin:1.8.37
cpe:/a:moinmo:moinmoin:1.8.28
cpe:/a:moinmo:moinmoin:1.8.18
cpe:/a:moinmo:moinmoin:1.8.08
cpe:/a:moinmo:moinmoin:1.7.38
cpe:/a:moinmo:moinmoin:1.7.29
cpe:/a:moinmo:moinmoin:1.7.110
cpe:/a:moinmo:moinmoin:1.7.0:rc28
cpe:/a:moinmo:moinmoin:1.7.0:rc38
cpe:/a:moinmo:moinmoin:1.7.010
cpe:/a:moinmo:moinmoin:1.7.0:beta18
cpe:/a:moinmo:moinmoin:1.7.0:beta28
cpe:/a:moinmo:moinmoin:1.7.0:rc18
cpe:/a:moinmo:moinmoin:1.6.48
cpe:/a:moinmo:moinmoin:1.6.38
cpe:/a:moinmo:moinmoin:1.6.29
cpe:/a:moinmo:moinmoin:1.6.111
cpe:/a:moinmo:moinmoin:1.6.0:rc18
cpe:/a:moinmo:moinmoin:1.6.0:rc28
cpe:/a:moinmo:moinmoin:1.6.08
cpe:/a:moinmo:moinmoin:1.6.0:beta18
cpe:/a:moinmo:moinmoin:1.6.0:beta28
cpe:/a:moinmo:moinmoin:1.5.88
cpe:/a:moinmo:moinmoin:1.5.78
cpe:/a:moinmo:moinmoin:1.5.68
cpe:/a:moinmo:moinmoin:1.5.5a8
cpe:/a:moinmo:moinmoin:1.5.58
cpe:/a:moinmo:moinmoin:1.5.5:a3
cpe:/a:moinmo:moinmoin:1.5.5:rc18
cpe:/a:moinmo:moinmoin:1.5.48
cpe:/a:moinmo:moinmoin:1.5.38
cpe:/a:moinmo:moinmoin:1.5.3:rc18
cpe:/a:moinmo:moinmoin:1.5.3:rc28
cpe:/a:moinmo:moinmoin:1.5.28
cpe:/a:moinmo:moinmoin:1.5.18
cpe:/a:moinmo:moinmoin:1.5.0:beta28
cpe:/a:moinmo:moinmoin:1.5.0:beta38
cpe:/a:moinmo:moinmoin:1.5.0:beta48
cpe:/a:moinmo:moinmoin:1.5.0:beta58
cpe:/a:moinmo:moinmoin:1.5.0:beta68
cpe:/a:moinmo:moinmoin:1.5.0:rc18
cpe:/a:moinmo:moinmoin:1.5.08
cpe:/a:moinmo:moinmoin:1.5.0:beta18
cpe:/a:moinmo:moinmoin:1.45
cpe:/a:moinmo:moinmoin:1.3.55
cpe:/a:moinmo:moinmoin:1.3.5:rc15
cpe:/a:moinmo:moinmoin:1.3.45
cpe:/a:moinmo:moinmoin:1.3.35
cpe:/a:moinmo:moinmoin:1.3.25
cpe:/a:moinmo:moinmoin:1.3.15
cpe:/a:moinmo:moinmoin:1.3.05
cpe:/a:moinmo:moinmoin:1.2.45
cpe:/a:moinmo:moinmoin:1.2.35
cpe:/a:moinmo:moinmoin:1.2.25
cpe:/a:moinmo:moinmoin:1.2.15
cpe:/a:moinmo:moinmoin:1.25
cpe:/a:moinmo:moinmoin:1.15
cpe:/a:moinmo:moinmoin:1.05
cpe:/a:moinmo:moinmoin:0.95
cpe:/a:moinmo:moinmoin:0.85
cpe:/a:moinmo:moinmoin:0.75
cpe:/a:moinmo:moinmoin:0.65
cpe:/a:moinmo:moinmoin:0.55
cpe:/a:moinmo:moinmoin:0.45
cpe:/a:moinmo:moinmoin:0.35
cpe:/a:moinmo:moinmoin:0.25
cpe:/a:moinmo:moinmoin:0.115
cpe:/a:moinmo:moinmoin:0.105
cpe:/a:moinmo:moinmoin:0.15

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
6 2013-01-02 CVE-2012-6495 Network Medium Requires ...
4.3 2013-01-02 CVE-2012-6082 Network Medium None Requ...
6 2013-01-02 CVE-2012-6081 Network Medium Requires ...
6.4 2013-01-02 CVE-2012-6080 Network Low None Requ...
6 2012-09-10 CVE-2012-4404 Network Medium Requires ...
Hide | Show 15 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
2.6 2011-02-22 CVE-2011-1058 Network High None Requ...
4.3 2010-08-05 CVE-2010-2970 Network Medium None Requ...
4.3 2010-08-05 CVE-2010-2969 Network Medium None Requ...
4.3 2010-08-05 CVE-2010-2487 Network Medium None Requ...
5 2010-04-05 CVE-2010-1238 Network Low None Requ...
3.5 2010-04-05 CVE-2010-0828 Network Medium Requires ...
7.5 2010-03-29 CVE-2009-4762 Network Low None Requ...
7.5 2010-02-26 CVE-2010-0717 Network Low None Requ...
7.5 2010-02-26 CVE-2010-0669 Network Low None Requ...
6.8 2010-02-26 CVE-2010-0668 Network Medium None Requ...
5 2010-02-26 CVE-2010-0667 Network Low None Requ...
4.3 2009-04-29 CVE-2009-1482 Network Medium None Requ...
6.8 2009-04-03 CVE-2008-6603 Network Medium None Requ...
5 2009-03-29 CVE-2008-6549 Network Low None Requ...
5 2009-03-29 CVE-2008-6548 Network Low None Requ...

CWE : Common Weakness Enumeration

%idName
43% (7)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
31% (5)CWE-264Permissions, Privileges, and Access Controls
12% (2)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...
6% (1)CWE-200Information Exposure
6% (1)CWE-16Configuration

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-1Accessing Functionality Not Properly Constrained by ACLs
CAPEC-13Subverting Environment Variable Values
CAPEC-17Accessing, Modifying or Executing Executable Files
CAPEC-39Manipulating Opaque Client-based Data Tokens
CAPEC-45Buffer Overflow via Symbolic Links
Hide | Show 7 More...
idName
CAPEC-51Poison Web Service Registry
CAPEC-59Session Credential Falsification through Prediction
CAPEC-60Reusing Session IDs (aka Session Replay)
CAPEC-76Manipulating Input to File System Calls
CAPEC-77Manipulating User-Controlled Variables
CAPEC-87Forceful Browsing
CAPEC-104Cross Zone Scripting

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:13831USN-774-1 -- moin vulnerability
oval:org.mitre.oval:def:13624DSA-1791-1 moin -- insufficient input sanitising
oval:org.mitre.oval:def:13462USN-941-1 -- moin vulnerability
oval:org.mitre.oval:def:13549USN-911-1 -- moin vulnerabilities
oval:org.mitre.oval:def:7566DSA-2014 moin -- several vulnerabilities
Hide | Show 10 More...
idName
oval:org.mitre.oval:def:18433DSA-2014-1 moin - several vulnerabilities
oval:org.mitre.oval:def:7093DSA-2024 moin -- insufficient input sanitising
oval:org.mitre.oval:def:18244DSA-2024-1 moin - cross-site scripting
oval:org.mitre.oval:def:13275USN-925-1 -- moin vulnerabilities
oval:org.mitre.oval:def:11879DSA-2083-1 moin -- missing input sanitisation
oval:org.mitre.oval:def:13311USN-977-1 -- moin vulnerabilities
oval:org.mitre.oval:def:15278DSA-2321-1 moin -- cross-site scripting
oval:org.mitre.oval:def:17914DSA-2538-1 moin - privilege escalation
oval:org.mitre.oval:def:17640USN-1604-1 -- moin vulnerabilities
oval:org.mitre.oval:def:18060DSA-2593-1 moin - several

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
71025MoinMoin reStructuredText Parser refuri Parameter XSS
66908MoinMoin action/recoverpass.py Unspecified Parameter XSS
66907MoinMoin action/newaccount.py Unspecified Parameter XSS
66906MoinMoin action/login.py Unspecified Parameter XSS
66905MoinMoin action/backup.py Unspecified Parameter XSS
Hide | Show 20 More...
idDescription
66904MoinMoin action/RenamePage.py Unspecified Parameter XSS
66903MoinMoin action/Load.py Unspecified Parameter XSS
66902MoinMoin action/CopyPage.py Unspecified Parameter XSS
66901MoinMoin PageGraphicalEditor.py Unspecified Parameter XSS
66900MoinMoin Page.py Unspecified Parameter XSS
66899MoinMoin action/userprofile.py Unspecified Parameter XSS
66898MoinMoin action/chart.py Unspecified Parameter XSS
66897MoinMoin action/LikePages.py Unspecified Parameter XSS
66896MoinMoin action/language_setup.py Unspecified Parameter XSS
66895MoinMoin action/anywikidraw.py Unspecified Parameter XSS
66894MoinMoin action/SlideShow.py Unspecified Parameter XSS
65065MoinMoin PageEditor.py template Parameter XSS
63619MoinMoin Multiple Field Textcha Protection Mechanism Bypass
63362MoinMoin Despam.py Page Name XSS
62655MoinMoin User Profile Sanitization Weakness
62654MoinMoin cfg.packagepages_actions_excluded Default Configuration Unspecified ...
62043MoinMoin Superuser Definition Unspecified Issue
61831MoinMoin sys.argv Traversal Arbitrary File Disclosure
54967MoinMoin Hierarchical ACL Handling Weakness Sub-pages Restriction Bypass
54237MoinMoin action/AttachFile.py Multiple Function XSS

Metasploit Exploits

idDescription
2012-12-30MoinMoin twikidraw Action Traversal File Upload

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2013-09-18Name : Debian Security Advisory DSA 2593-1 (moin - several vulnerabilities
File : nvt/deb_2593_1.nasl
2012-10-22Name : Gentoo Security Advisory GLSA 201210-02 (MoinMoin)
File : nvt/glsa_201210_02.nasl
2012-10-12Name : Ubuntu Update for moin USN-1604-1
File : nvt/gb_ubuntu_USN_1604_1.nasl
2012-09-22Name : Fedora Update for moin FEDORA-2012-13400
File : nvt/gb_fedora_2012_13400_moin_fc16.nasl
2012-09-22Name : Fedora Update for moin FEDORA-2012-13408
File : nvt/gb_fedora_2012_13408_moin_fc17.nasl
Hide | Show 20 More...
idDescription
2012-09-15Name : Debian Security Advisory DSA 2538-1 (moin)
File : nvt/deb_2538_1.nasl
2012-09-07Name : FreeBSD Ports: moinmoin
File : nvt/freebsd_moinmoin7.nasl
2012-09-07Name : FreeBSD Ports: moinmoin
File : nvt/freebsd_moinmoin8.nasl
2011-10-16Name : Debian Security Advisory DSA 2321-1 (moin)
File : nvt/deb_2321_1.nasl
2011-03-08Name : Fedora Update for moin FEDORA-2011-2156
File : nvt/gb_fedora_2011_2156_moin_fc14.nasl
2011-03-08Name : Fedora Update for moin FEDORA-2011-2157
File : nvt/gb_fedora_2011_2157_moin_fc13.nasl
2011-01-24Name : FreeBSD Ports: moinmoin
File : nvt/freebsd_moinmoin6.nasl
2010-08-30Name : Ubuntu Update for moin vulnerabilities USN-977-1
File : nvt/gb_ubuntu_USN_977_1.nasl
2010-08-21Name : Debian Security Advisory DSA 2083-1 (moin)
File : nvt/deb_2083_1.nasl
2010-07-05Name : MoinMoin 'PageEditor.py' Cross-Site Scripting Vulnerability
File : nvt/gb_moinmoin_40549.nasl
2010-06-18Name : Fedora Update for moin FEDORA-2010-9857
File : nvt/gb_fedora_2010_9857_moin_fc12.nasl
2010-06-18Name : Fedora Update for moin FEDORA-2010-9876
File : nvt/gb_fedora_2010_9876_moin_fc11.nasl
2010-05-28Name : Ubuntu Update for moin vulnerability USN-941-1
File : nvt/gb_ubuntu_USN_941_1.nasl
2010-04-13Name : MoinMoin Wiki Security Bypass Vulnerability
File : nvt/gb_moinmoin_wiki_bypass_vuln.nasl
2010-04-13Name : MoinMoin 'Despam' Action Cross-Site Scripting Vulnerability
File : nvt/gb_moinmoin_wiki_xss_vuln.nasl
2010-04-09Name : Fedora Update for moin FEDORA-2010-6012
File : nvt/gb_fedora_2010_6012_moin_fc11.nasl
2010-04-09Name : Fedora Update for moin FEDORA-2010-6134
File : nvt/gb_fedora_2010_6134_moin_fc12.nasl
2010-04-09Name : Ubuntu Update for moin vulnerabilities USN-925-1
File : nvt/gb_ubuntu_USN_925_1.nasl
2010-04-01Name : MoinMoin Wiki Security Bypass Vulnerability
File : nvt/secpod_moinmoin_wiki_acl_sec_bypass_vuln.nasl
2010-03-12Name : Ubuntu Update for moin vulnerabilities USN-911-1
File : nvt/gb_ubuntu_USN_911_1.nasl

Snort® IPS/IDS

DateDescription
2014-01-10MoinMoin arbitrary file upload attempt
RuleID : 25286 - Type : SERVER-WEBAPP - Revision : 3

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2013-09-25Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201309-14.nasl - Type : ACT_GATHER_INFO
2013-02-28Name : A wiki application on the remote web server is affected by multiple vulnerabi...
File : moinmoin_1_9_6.nasl - Type : ACT_GATHER_INFO
2013-02-28Name : A wiki application on the remote web server is affected by a cross- site scri...
File : moinmoin_rsslink_xss.nasl - Type : ACT_ATTACK
2013-01-23Name : The remote Fedora host is missing a security update.
File : fedora_2013-0640.nasl - Type : ACT_GATHER_INFO
2013-01-23Name : The remote Fedora host is missing a security update.
File : fedora_2013-0685.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2013-01-21Name : The remote Fedora host is missing a security update.
File : fedora_2013-0600.nasl - Type : ACT_GATHER_INFO
2013-01-21Name : A wiki application on the remote web server is affected by a code execution v...
File : moinmoin_twikidraw_code_exec.nasl - Type : ACT_DESTRUCTIVE_ATTACK
2013-01-07Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_a264b1b0572611e2948314dae938ec40.nasl - Type : ACT_GATHER_INFO
2012-12-31Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2593.nasl - Type : ACT_GATHER_INFO
2012-10-19Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201210-02.nasl - Type : ACT_GATHER_INFO
2012-10-12Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-1604-1.nasl - Type : ACT_GATHER_INFO
2012-09-18Name : The remote Fedora host is missing a security update.
File : fedora_2012-13400.nasl - Type : ACT_GATHER_INFO
2012-09-18Name : The remote Fedora host is missing a security update.
File : fedora_2012-13408.nasl - Type : ACT_GATHER_INFO
2012-09-18Name : The remote Fedora host is missing a security update.
File : fedora_2012-13528.nasl - Type : ACT_GATHER_INFO
2012-09-06Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2538.nasl - Type : ACT_GATHER_INFO
2012-09-05Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_4f99e2eff72511e18bd80022156e8794.nasl - Type : ACT_GATHER_INFO
2012-09-05Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_4a8a98abf74511e18bd80022156e8794.nasl - Type : ACT_GATHER_INFO
2011-10-11Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2321.nasl - Type : ACT_GATHER_INFO
2011-03-07Name : The remote Fedora host is missing a security update.
File : fedora_2011-2156.nasl - Type : ACT_GATHER_INFO
2011-03-07Name : The remote Fedora host is missing a security update.
File : fedora_2011-2157.nasl - Type : ACT_GATHER_INFO
2011-03-03Name : The remote Fedora host is missing a security update.
File : fedora_2011-2219.nasl - Type : ACT_GATHER_INFO
2011-01-19Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_4c0173451d8911e0bbee0014a5e3cda6.nasl - Type : ACT_GATHER_INFO
2010-08-26Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-977-1.nasl - Type : ACT_GATHER_INFO
2010-08-04Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2083.nasl - Type : ACT_GATHER_INFO
2010-07-01Name : The remote Fedora host is missing a security update.
File : fedora_2010-6012.nasl - Type : ACT_GATHER_INFO