Lucene search
GoogleOSV:GHSA-WC8W-GH5M-62FVHistoryMay 17, 2022 - 2:10 a.m.
MoinMoin Access Restrictions Bypassed due to improper ACL enforcement
2022-05-1702:10:54
Google
osv.dev
2
moinmoin
access restrictions
bypassed
acl enforcement
remote attackers
vulnerability
MoinMoin 1.6.2 and 1.7 does not properly enforce ACL checks when acl_hierarchic is set to True, which might allow remote attackers to bypass intended access restrictions, a different vulnerability than CVE-2008-1937.
References
moinmo.in/SecurityFixes
exchange.xforce.ibmcloud.com/vulnerabilities/41911
github.com/moinwiki/moin
nvd.nist.gov/vuln/detail/CVE-2008-6603
web.archive.org/web/20080511110948/hg.moinmo.in/moin/1.6/rev/543ae9bdbe26
web.archive.org/web/20090730023652/moinmo.in/MoinMoinBugs/AclHierarchicPageAclSupercededByAclRightsAfter
web.archive.org/web/20200301063229/www.securityfocus.com/bid/34655
web.archive.org/web/20211207023130/hg.moinmo.in/moin/1.7/rev/88356b3f849a
Related
prion
prion
Design/Logic Flaw
2009-04-03 18:30:00
Code injection
2008-04-25 06:05:00
Design/Logic Flaw
2010-03-29 20:30:00
ubuntucve
ubuntucve
cvelist
cvelist
cve
cve
nvd
nvd
github
github
MoinMoin Access Restrictions Bypassed due to improper ACL enforcement
2022-05-17 02:10:54
MoinMoin vulnerable to privilege escalation
2022-05-01 23:45:03
MoinMoin Improper Access Control vulnerability
2022-05-02 03:57:54
debiancve
debiancve
freebsd
freebsd
moinmoin -- superuser privilege escalation
2008-04-20 00:00:00
openvas
openvas
FreeBSD Ports: moinmoin
2008-09-04 00:00:00
FreeBSD Ports: moinmoin
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200805-09 (moinmoin)
2008-09-24 00:00:00
gentoo
gentoo
MoinMoin: Privilege escalation
2008-05-11 00:00:00
nessus
nessus
GLSA-200805-09 : MoinMoin: Privilege escalation
2008-05-13 00:00:00
osv
osv
MoinMoin vulnerable to privilege escalation
2022-05-01 23:45:03
PYSEC-2010-13
2010-03-29 20:30:00