MoinMoin contains a flaw that is triggered when handling ACL rules for groups containing virtual group. This may allow a remote attacker to have permissions assigned to them incorrectly and bypass access restrictions.
Remote / Network Access
Loss of Integrity
Patch / RCS,
Upgrade to version 1.9.5 or higher (released 2012-09-24), as it has been reported to fix this vulnerability. In addition, the vendor has released a patch for some older versions.