Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

DSA-3715-1 moin -- security update

Related Vulnerabilities: CVE-2016-7146   CVE-2016-7148   CVE-2016-9119  

Several cross-site scripting vulnerabilities were discovered in moin, a Python clone of WikiWiki. A remote attacker can conduct cross-site scripting attacks via the GUI editor's attachment dialogue (CVE-2016-7146), the AttachFile view (CVE-2016-7148) and the GUI editor's link dialogue (CVE-2016-9119). For the stable distribution (jessie), these problems have been fixed in version 1.9.8-1+deb8u1. We recommend that you upgrade your moin packages.

Source

Debian Security Advisory

DSA-3715-1 moin -- security update

Date Reported:
15 Nov 2016
Affected Packages:
moin
Vulnerable:
Yes
Security database references:
In the Debian bugtracking system: Bug 844338, Bug 844340, Bug 844341.
In Mitre's CVE dictionary: CVE-2016-7146, CVE-2016-7148, CVE-2016-9119.
More information:

Several cross-site scripting vulnerabilities were discovered in moin, a Python clone of WikiWiki. A remote attacker can conduct cross-site scripting attacks via the GUI editor's attachment dialogue (CVE-2016-7146), the AttachFile view (CVE-2016-7148) and the GUI editor's link dialogue (CVE-2016-9119).

For the stable distribution (jessie), these problems have been fixed in version 1.9.8-1+deb8u1.

We recommend that you upgrade your moin packages.

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started