Lucene search

PRIOn knowledge basePRION:CVE-2023-37301

HistoryJun 30, 2023 - 5:15 p.m.

Design/Logic Flaw

2023-06-3017:15:00

PRIOn knowledge base

www.prio-n.com

mediawiki

design flaw

logic flaw

wikibase

editentity

abusefilter

nvd

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.5%

JSON

An issue was discovered in SubmitEntityAction in Wikibase in MediaWiki through 1.39.3. Because it doesn’t use EditEntity for undo and restore, the intended interaction with AbuseFilter does not occur.

CPENameOperatorVersion
mediawikile1.39.3

CPE	Name	Operator	Version
	mediawiki	le	1.39.3

References

gerrit.wikimedia.org/r/c/mediawiki/extensions/Wikibase/+/933663

phabricator.wikimedia.org/T250720