moin is vulnerable to remote code execution. An attacker with write
permissions is able to upload and execute malicious code via the normal wiki attachment upload functionality in the context of the server process worker by using the vulnerable MoinMoin cache action.