Ubuntu Security Notice (C) 2010-2013 Canonical, Inc. / NASL script (C) 2010-2013 Tenable Network Security, Inc.
The remote Ubuntu host is missing one or more security-related patches.
It was discovered that MoinMoin did not properly sanitize its input
when processing Despam actions, resulting in cross-site scripting
(XSS) vulnerabilities. If a privileged wiki user were tricked into
performing the Despam action on a page with a crafted title, a remote
It was discovered that the TextCha protection in MoinMoin could be
bypassed by submitting a crafted form request. This issue only
affected Ubuntu 8.10. (CVE-2010-1238).
Update the affected moinmoin-common, python-moinmoin and / or
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.1
Public Exploit Available : true