GHSA-rqxp-6926-hphr, CVE-2008-1937
pypi/moin
MoinMoin vulnerable to privilege escalation
The user form processing (userform.py) in MoinMoin before 1.6.3, when using ACLs or a non-empty superusers list, does not properly manage users, which allows remote attackers to gain privileges.
All versions before 1.6.3
Upgrade to version 1.6.3 or above.
2024-02-12
source |