FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

moinmoin -- multiple vulnerabilities

Affected packages
		moinmoin	<	1.9.11

Details

VuXML ID	abed4ff0-7da1-4236-880d-de33e4895315
Discovery	2020-11-08
Entry	2021-01-18

MoinMoin reports:

Security fix for CVE-2020-25074: fix remote code execution via cache action

Security fix for CVE-2020-15275: fix malicious SVG attachment causing stored XSS vulnerability

[source]

References

CVE Name	CVE-2020-15275
CVE Name	CVE-2020-25074
URL	https://github.com/moinwiki/moin-1.9/blob/1.9.11/docs/CHANGES#L13