PYSEC-2026-679

See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/moin/PYSEC-2026-679.yaml
JSON Data
https://api.osv.dev/v1/vulns/PYSEC-2026-679
Aliases
Published
2026-07-02T14:13:20.125761Z
Modified
2026-07-06T08:00:44.772810771Z
Summary
MoinMoin Insertion of Sensitive Information into Log File
Details

An information leak was discovered in MoinMoin's debug reporting version 1.5.7, which could expose information about the versions of software running on the host system. MoinMoin administrators can add "show_traceback=0" to their site configurations to disable debug tracebacks.

References

Affected packages

PyPI / moin

Package

Affected ranges

Type
ECOSYSTEM
Events
Introduced
1.5.7
Fixed
1.5.8

Affected versions

1.*
1.5.7

Database specific

source
"https://github.com/pypa/advisory-database/blob/main/vulns/moin/PYSEC-2026-679.yaml"