Lucene search
PRIOn knowledge basePRION:CVE-2020-5302HistoryApr 07, 2020 - 4:15 p.m.
Design/Logic Flaw
2020-04-0716:15:00
PRIOn knowledge base
www.prio-n.com
5
MH-WikiBot (an IRC Bot for interacting with the Miraheze API), had a bug that allowed any unprivileged user to access the steward commands on the IRC interface by impersonating the Nickname used by a privileged user as no check was made to see if they were logged in. The issue has been fixed in commit 23d9d5b0a59667a5d6816fdabb960b537a5f9ed1.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mh-wikibot | eq | < 202046 |
Related
cvelist
cvelist
CVE-2020-5302 unprivileged user can access priviledged action in MH-WikiBot
2020-04-07 15:40:14
CVE-2019-5303
2020-04-27 20:01:02
nvd
nvd
CVE-2020-5302
2020-04-07 16:15:18
CVE-2019-5303
2020-04-27 20:15:12
cve
cve
CVE-2020-5302
2020-04-07 16:15:18
CVE-2019-5303
2020-04-27 20:15:12
prion
prion
Input validation
2020-04-27 20:15:00