Moderate severityNVD Advisory· Published Mar 30, 2009· Updated Jun 16, 2026
CVE-2008-6548
CVE-2008-6548
Description
The rst parser (parser/text_rst.py) in MoinMoin 1.6.1 does not check the ACL of an included page, which allows attackers to read unauthorized include files via unknown vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
moinPyPI | < 1.6.2 | 1.6.2 |
Affected products
3- osv-coords2 versions
< 1.6.2-1+ 1 more
- (no CPE)range: < 1.6.2-1
- (no CPE)range: < 1.6.2
Patches
Vulnerability mechanics
References
8- hg.moinmo.in/moin/1.6/rev/35ff7a9b1546nvdBroken LinkVendor AdvisoryWEB
- moinmo.in/SecurityFixesnvdRelease NotesVendor AdvisoryWEB
- github.com/advisories/GHSA-jhxw-4hw4-mhh7ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2008-6548ghsaADVISORY
- osvdb.org/48877nvdBroken Link
- github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2009-11.yamlghsaWEB
- web.archive.org/web/20080523123729/http://hg.moinmo.in/moin/1.6/raw-file/1.6.2/docs/CHANGESghsaWEB
- web.archive.org/web/20211206185024/http://hg.moinmo.in/moin/1.6/rev/35ff7a9b1546ghsaWEB
News mentions
0No linked articles in our index yet.