VYPR
High severityNVD Advisory· Published Apr 25, 2008· Updated Jun 16, 2026

CVE-2008-1937

CVE-2008-1937

Description

The user form processing (userform.py) in MoinMoin before 1.6.3, when using ACLs or a non-empty superusers list, does not properly manage users, which allows remote attackers to gain privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
moinPyPI
< 1.6.31.6.3

Affected products

4
  • Moinmo/Moinmoin3 versions
    cpe:2.3:a:moinmoin:moinmoin:1.6.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:moinmoin:moinmoin:1.6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:moinmoin:moinmoin:1.6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:moinmoin:moinmoin:1.6.2:*:*:*:*:*:*:*
  • ghsa-coords
    Range: < 1.6.3

Patches

Vulnerability mechanics

References

15

News mentions

0

No linked articles in our index yet.