High severityNVD Advisory· Published Feb 26, 2010· Updated Apr 29, 2026
CVE-2010-0669
CVE-2010-0669
Description
MoinMoin before 1.8.7 and 1.9.x before 1.9.2 does not properly sanitize user profiles, which has unspecified impact and attack vectors.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
moinPyPI | < 1.8.7 | 1.8.7 |
moinPyPI | >= 1.9, < 1.9.2 | 1.9.2 |
Affected products
46cpe:2.3:a:moinmo:moinmoin:*:*:*:*:*:*:*:*+ 45 more
- cpe:2.3:a:moinmo:moinmoin:*:*:*:*:*:*:*:*range: <=1.8.6
- cpe:2.3:a:moinmo:moinmoin:1.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta3:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta4:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta5:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta6:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.3:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.3:rc2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.4:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.5:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.5:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.5a:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.6:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.7:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.8:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.3:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.4:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.9.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
17- moinmo.in/SecurityFixesnvdVendor AdvisoryWEB
- secunia.com/advisories/38444nvdVendor Advisory
- github.com/advisories/GHSA-977v-29j9-9rxcghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2010-0669ghsaADVISORY
- hg.moinmo.in/moin/1.8/raw-file/1.8.7/docs/CHANGESnvdWEB
- moinmo.in/MoinMoinRelease1.8nvdWEB
- www.debian.org/security/2010/dsa-2014nvdWEB
- www.openwall.com/lists/oss-security/2010/02/15/2nvdWEB
- www.openwall.com/lists/oss-security/2010/02/15/4nvdWEB
- www.openwall.com/lists/oss-security/2010/02/21/2nvdWEB
- github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2010-2.yamlghsaWEB
- web.archive.org/web/20111225112846/http://secunia.com/advisories/38903ghsaWEB
- web.archive.org/web/20140806190238/http://secunia.com/advisories/38444ghsaWEB
- web.archive.org/web/20200228174758/http://www.securityfocus.com/bid/38023ghsaWEB
- secunia.com/advisories/38903nvd
- www.securityfocus.com/bid/38023nvd
- www.vupen.com/english/advisories/2010/0600nvd
News mentions
0No linked articles in our index yet.