High severityNVD Advisory· Published Feb 26, 2010· Updated Apr 29, 2026
CVE-2010-0717
CVE-2010-0717
Description
The default configuration of cfg.packagepages_actions_excluded in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
moinPyPI | < 1.8.7 | 1.8.7 |
Affected products
44cpe:2.3:a:moinmo:moinmoin:*:*:*:*:*:*:*:*+ 43 more
- cpe:2.3:a:moinmo:moinmoin:*:*:*:*:*:*:*:*range: <=1.8.6
- cpe:2.3:a:moinmo:moinmoin:1.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta3:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta4:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta5:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:beta6:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.3:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.3:rc2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.4:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.5:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.5:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.5a:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.6:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.7:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.5.8:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.3:*:*:*:*:*:*:*
- cpe:2.3:a:moinmo:moinmoin:1.8.4:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- github.com/advisories/GHSA-5jjr-gmq3-f986ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2010-0717ghsaADVISORY
- hg.moinmo.in/moin/1.8/raw-file/1.8.7/docs/CHANGESnvdWEB
- moinmo.in/MoinMoinRelease1.8nvdWEB
- www.debian.org/security/2010/dsa-2014nvdWEB
- www.openwall.com/lists/oss-security/2010/02/15/2nvdWEB
- www.vupen.com/english/advisories/2010/0600nvdWEB
- exchange.xforce.ibmcloud.com/vulnerabilities/56595nvdWEB
- github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2010-3.yamlghsaWEB
- web.archive.org/web/20140807024009/http://secunia.com/advisories/38903ghsaWEB
- secunia.com/advisories/38903nvd
News mentions
0No linked articles in our index yet.