PT-2007-2343 · Moinmoin · Moinmoin

Published

2007-02-13

Updated

2022-05-01

CVE-2007-0902

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions: MoinMoin version 1.5.7

Description: The issue concerns an information leak in the debug reporting feature of MoinMoin, potentially exposing details about the software versions running on the host system. This could allow remote attackers to obtain sensitive information.

Recommendations: For MoinMoin version 1.5.7, add "show traceback=0" to the site configuration to disable debug tracebacks as a mitigation measure.

Fix

Insertion into Log File

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-532

Related Identifiers

CVE-2007-0902

GHSA-MXH8-XGQ9-W782

Affected Products

Moinmoin

PT-2007-2343 · Moinmoin · Moinmoin

CVE-2007-0902

Weakness Enumeration

Related Identifiers

Affected Products

References · 9