CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2022/05/01 11:45 p.m.•21 views

GHSA-RQXP-6926-HPHR MoinMoin vulnerable to privilege escalation

The user form processing userform.py in MoinMoin before 1.6.3, when using ACLs or a non-empty superusers list, does not properly manage users, which allows remote attackers to gain privileges...

8.7CVSS6.3AI score0.01EPSS

Exploits1References10

OSV•added 2008/04/25 6:5 a.m.•3 views

PYSEC-2008-12

The user form processing userform.py in MoinMoin before 1.6.3, when using ACLs or a non-empty superusers list, does not properly manage users, which allows remote attackers to gain privileges...

6.8CVSS6.6AI score0.01EPSS

Exploits1References8

Prion•added 2008/04/25 6:5 a.m.•15 views

Code injection

The user form processing userform.py in MoinMoin before 1.6.3, when using ACLs or a non-empty superusers list, does not properly manage users, which allows remote attackers to gain privileges...

6.8CVSS6.9AI score0.01EPSS

Exploits1References8Affected Software1

CVE•added 2008/04/24 6:0 p.m.•51 views

CVE-2008-1937

CVE-2008-1937 affects MoinMoin: the userform.py processing in versions prior to 1.6.3 fails to properly manage users when ACLs or a non-empty superuser list are used, enabling remote privilege escalation. The issue is tied to the user management logic in the form handling code, not a general prod...

6.8CVSS6.5AI score0.01EPSS

Exploits1References8Affected Software1