GHSA-wc8w-gh5m-62fv, CVE-2008-6603
pypi/moin
MoinMoin Access Restrictions Bypassed due to improper ACL enforcement
MoinMoin 1.6.2 and 1.7 does not properly enforce ACL checks when acl_hierarchic is set to True, which might allow remote attackers to bypass intended access restrictions, a different vulnerability than CVE-2008-1937.
All versions before 1.6.3, version 1.7
Upgrade to versions 1.6.3, 1.7.1 or above.
2024-02-12
source |