CVE-2008-1937

MoinMoin vulnerable to privilege escalation in pypi/moin

Identifiers

GHSA-rqxp-6926-hphr, CVE-2008-1937

Package Slug

pypi/moin

Vulnerability

MoinMoin vulnerable to privilege escalation

Description

The user form processing (userform.py) in MoinMoin before 1.6.3, when using ACLs or a non-empty superusers list, does not properly manage users, which allows remote attackers to gain privileges.

Affected Versions

All versions before 1.6.3

Solution

Upgrade to version 1.6.3 or above.

Last Modified

2024-02-12

source