2 matches found
CVE-2021-36129
An issue was discovered in the Translate extension in MediaWiki through 1.36. The Aggregategroups Action API module does not validate the parameter for aggregategroup when action=remove is set, thus allowing users with the translate-manage right to silently delete various groups' metadata...
CVE-2021-36129
Summary: CVE-2021-36129 affects the MediaWiki Translate extension (through 1.36). The Aggregategroups Action API module does not validate the aggregategroup parameter when action=remove is set, enabling users with the translate-manage right to silently delete metadata for various groups. Impact a...