PT-2004-2376 · Moinmoin · Moinmoin

Published

2004-12-31

Updated

2022-04-29

CVE-2004-1463

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: MoinMoin versions 1.2.2 and earlier

Description: The issue is related to Access Control Lists (ACL) in the PageEditor of MoinMoin, which could allow a remote attacker to gain elevated privileges. The impact of this issue is related to an undisclosed vulnerability in the ACL.

Recommendations: For MoinMoin versions 1.2.2 and earlier, consider restricting access to the PageEditor until a fix is available. As a temporary workaround, review and restrict Access Control Lists (ACL) to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1463

GHSA-9XH4-WPX8-RG2W

Affected Products

Moinmoin

PT-2004-2376 · Moinmoin · Moinmoin

CVE-2004-1463

Related Identifiers

Affected Products

References · 7