Several vulnerabilities have been reported in MoinMoin Wiki Engine.
Package | www-apps/moinmoin on all architectures |
---|---|
Affected versions | < 1.6.1 |
Unaffected versions | >= 1.6.1 |
MoinMoin is an advanced, easy to use and extensible Wiki Engine.
Multiple vulnerabilities have been discovered:
These vulnerabilities can be exploited to allow remote attackers to inject arbitrary web script or HTML, overwrite arbitrary files, or read protected pages.
There is no known workaround at this time.
All MoinMoin users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=www-apps/moinmoin-1.6.1"
Release date
March 18, 2008
Latest revision
March 18, 2008: 01
Severity
normal
Exploitable
remote
Bugzilla entries