Moderate severityNVD Advisory· Published Feb 26, 2010· Updated Apr 29, 2026
CVE-2010-0668
CVE-2010-0668
Description
Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or OpenID configured.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
moinPyPI | >= 1.5, < 1.8.7 | 1.8.7 |
moinPyPI | >= 1.9, < 1.9.2 | 1.9.2 |
Affected products
46cpe:2.3:a:moinmo:moinmoin:1.7.3:*:*:*:*:*:*:*+ 45 more
- cpe:2.3:a:moinmo:moinmoin:1.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.3:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.4:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.6:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.9.1:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta3:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta4:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta5:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta6:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.3:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.3:rc2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.4:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.5:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.5:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.5a:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.6:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.7:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.8:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
26- www.securityfocus.com/bid/38023nvdPatch
- moinmo.in/SecurityFixesnvdVendor AdvisoryWEB
- secunia.com/advisories/38444nvdVendor Advisory
- secunia.com/advisories/38709nvdVendor Advisory
- www.vupen.com/english/advisories/2010/0266nvdVendor Advisory
- github.com/advisories/GHSA-574f-mh6m-c6qmghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2010-0668ghsaADVISORY
- bugs.debian.org/cgi-bin/bugreport.cginvdWEB
- hg.moinmo.in/moin/1.8/raw-file/1.8.7/docs/CHANGESnvdWEB
- lists.fedoraproject.org/pipermail/package-announce/2010-February/035374.htmlnvdWEB
- lists.fedoraproject.org/pipermail/package-announce/2010-February/035438.htmlnvdWEB
- marc.infonvdWEB
- marc.infonvdWEB
- moinmo.in/MoinMoinRelease1.8nvdWEB
- www.debian.org/security/2010/dsa-2014nvdWEB
- www.openwall.com/lists/oss-security/2010/02/15/2nvdWEB
- bugzilla.redhat.com/show_bug.cginvdWEB
- exchange.xforce.ibmcloud.com/vulnerabilities/56002nvdWEB
- github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2010-15.yamlghsaWEB
- web.archive.org/web/20111225112846/http://secunia.com/advisories/38903ghsaWEB
- web.archive.org/web/20140725192956/http://secunia.com/advisories/38709ghsaWEB
- web.archive.org/web/20140806190238/http://secunia.com/advisories/38444ghsaWEB
- web.archive.org/web/20200228174758/http://www.securityfocus.com/bid/38023ghsaWEB
- secunia.com/advisories/38903nvd
- www.osvdb.org/62043nvd
- www.vupen.com/english/advisories/2010/0600nvd
News mentions
0No linked articles in our index yet.