VYPR
Moderate severityNVD Advisory· Published Apr 5, 2010· Updated Jun 16, 2026

CVE-2010-0828

CVE-2010-0828

Description

Cross-site scripting (XSS) vulnerability in action/Despam.py in the Despam action module in MoinMoin 1.8.7 and 1.9.2 allows remote authenticated users to inject arbitrary web script or HTML by creating a page with a crafted URI.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
moinPyPI
>= 1.9.0, < 1.9.31.9.3
moinPyPI
>= 1.8.0, < 1.8.81.8.8

Affected products

4
  • Moinmo/Moinmoin2 versions
    cpe:2.3:a:moinmo:moinmoin:1.8.7:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:moinmo:moinmoin:1.8.7:*:*:*:*:*:*:*
    • cpe:2.3:a:moinmo:moinmoin:1.9.2:*:*:*:*:*:*:*
  • osv-coords2 versions
    < 1.9.2-3+ 1 more
    • (no CPE)range: < 1.9.2-3
    • (no CPE)range: >= 1.9.0, < 1.9.3

Patches

Vulnerability mechanics

References

32

News mentions

0

No linked articles in our index yet.