The default configuration of cfg.packagepages_actions_excluded
in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors.
{ "nvd_published_at": "2010-02-26T19:30:00Z", "cwe_ids": [], "severity": "HIGH", "github_reviewed": true, "github_reviewed_at": "2024-04-29T11:18:54Z" }