Lucene search
China National Vulnerability DatabaseCNVD-2022-70093HistoryMay 06, 2022 - 12:00 a.m.
MediaWiki Cross-Site Request Forgery Vulnerability (CNVD-2022-70093)
2022-05-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
0.001 Low
EPSS
Percentile
29.8%
MediaWiki is a free and free-to-use web-based wiki engine from the U.S. Wikimedia (MediaWiki) Foundation. The product can be used to deploy internal knowledge management and content management systems.MediaWiki version 1.37.2 and earlier versions contain a cross-site request forgery vulnerability that could be exploited by an attacker to allow CSRF to be used to edit pages that store extended configurations.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mediawiki mediawiki | le | 1.37.2 |
Related
osv
osv
CVE-2022-29903
2022-04-29 04:15:10
BIT-mediawiki-2022-29903
2024-03-06 11:05:55
cvelist
cvelist
CVE-2022-29903
2022-04-29 03:44:15
nvd
nvd
CVE-2022-29903
2022-04-29 04:15:10
cve
cve
CVE-2022-29903
2022-04-29 04:15:10
prion
prion
Cross site request forgery (csrf)
2022-04-29 04:15:00