—
PYSEC-2008-12
상세
The user form processing (userform.py) in MoinMoin before 1.6.3, when using ACLs or a non-empty superusers list, does not properly manage users, which allows remote attackers to gain privileges.
이 버전이 영향받나요?
사용 중인 패키지 버전을 입력하면 즉시 평가합니다.
영향 패키지
참고
- http://hg.moinmo.in/moin/1.6/rev/f405012e67af [EVIDENCE]
- http://moinmo.in/SecurityFixes [WEB]
- http://www.securityfocus.com/bid/28869 [FIX]
- http://secunia.com/advisories/29894 [ADVISORY]
- http://security.gentoo.org/glsa/glsa-200805-09.xml [ADVISORY]
- http://secunia.com/advisories/30160 [ADVISORY]
- http://www.vupen.com/english/advisories/2008/1307/references [ADVISORY]
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41909 [WEB]
- https://github.com/advisories/GHSA-rqxp-6926-hphr [ADVISORY]