Authentication Bypass

mediawiki/core is vulnerable to authentication bypass attacks. The vulnerability exists due to the lack of account lock status check during a botpassword login, allowing accounts to be logged in through a bot password...