CVE-2009-1482

Name of the Vulnerable Software and Affected Versions: MoinMoin versions 1.8.2 and earlier

Description: The issue allows remote attackers to inject arbitrary web script or HTML via multiple vectors, including an AttachFile sub-action in the error msg function or multiple vectors related to package file errors in the upload form function.

Recommendations: For MoinMoin versions 1.8.2 and earlier, consider disabling the action/AttachFile.py module until a patch is available. Restrict access to the upload form function to minimize the risk of exploitation. Avoid using the error msg function in the AttachFile sub-action until the issue is resolved.