cbcvebase.
CVE-2009-4762
published 2010-03-29

CVE-2009-4762: MoinMoin 1.7.x before 1.7.3 and 1.8.x before 1.8.3 checks parent ACLs in certain inappropriate circumstances during processing of hierarchical ACLs, which…

PriorityP339high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
3.00%
85.7th percentile
MoinMoin 1.7.x before 1.7.3 and 1.8.x before 1.8.3 checks parent ACLs in certain inappropriate circumstances during processing of hierarchical ACLs, which allows remote attackers to bypass intended access restrictions by requesting an item, a different vulnerability than CVE-2008-6603.

Affected

6 ranges
VendorProductVersion rangeFixed in
moinmomoinmoin
moinmomoinmoin
moinmomoinmoin
moinmomoinmoin
moinmomoinmoin
moinmomoinmoin

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
ghsa6.8MEDIUM
osv6.8MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.