Home > Vulnerability Database > CVE-2007-2637

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2007-2637

Date: May 13, 2007

MoinMoin before 20070507 does not properly enforce ACLs for calendars and includes, which allows remote attackers to read certain pages via unspecified vectors.

Severity Score

5.3

Related Resources (9)

Url: http://www.debian.org/security/2008/dsa-1514

Url: http://secunia.com/advisories/25208

Url: http://osvdb.org/36269

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/34474

Url: http://secunia.com/advisories/29262

Url: https://nvd.nist.gov/vuln/detail/CVE-2007-2637

Url: https://moinmo.in/MoinMoinRelease1.5/CHANGES

Url: http://www.ubuntu.com/usn/usn-458-1

Url: https://www.mend.io/vulnerability-database/CVE-2007-2637

Severity Score

5.3

CVSS v3.1

Base Score:	5.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	NONE

CVSS v2

Base Score:	5.0
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	NONE
Availability (A):	NONE
Additional information:

Do you need more information?

Contact Us