Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:36 a.m.8 views

CVE-2021-41801

The ReplaceText extension through 1.41 for MediaWiki has Incorrect Access Control. When a user is blocked after submitting a replace job, the job is still run, even if it may be run at a later time due to the job queue backlog...

8.8CVSS6.7AI score0.01124EPSS
Exploits0References1
Mageia
Mageia
added 2021/10/13 7:39 p.m.36 views

Updated mediawiki packages fix security vulnerability

XSS vulnerability in Special:Search. CVE-2021-41798 ApiQueryBacklinks can cause a full table scan. CVE-2021-41799 Fix PoolCounter protection of Special:Contributions. CVE-2021-41800 ReplaceText continues performing actions if the user no longer has the correct permission such as by being blocked...

8.8CVSS2.6AI score0.01735EPSS
Exploits1References4
OSV
OSV
added 2021/10/11 8:15 a.m.1 views

DEBIAN-CVE-2021-41801

The ReplaceText extension through 1.41 for MediaWiki has Incorrect Access Control. When a user is blocked after submitting a replace job, the job is still run, even if it may be run at a later time due to the job queue backlog...

8.8CVSS6.7AI score0.01124EPSS
Exploits0References1
CVE
CVE
added 2021/10/11 7:40 a.m.85 views

CVE-2021-41801

The CVE-2021-41801 issue affects MediaWiki's ReplaceText extension (up to v1.41) and causes Incorrect Access Control: after a user is blocked following a replace job submission, the queued job may still execute later. The Debian security advisory and related Nessus entries confirm this as a vulne...

8.8CVSS8.4AI score0.01124EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/10/05 12:0 a.m.35 views

FreeBSD : mediawiki -- multiple vulnerabilities (f84ab297-2285-11ec-9e79-08002789875b)

MediaWiki reports : T285515, CVE-2021-41798 SECURITY: XSS vulnerability in Special:Search. T290379, CVE-2021-41799 SECURITY: ApiQueryBacklinks can cause a full table scan. T284419, CVE-2021-41800 SECURITY: fix PoolCounter protection of Special:Contributions. T279090, CVE-2021-41801 SECURITY:...

8.8CVSS6.2AI score0.01735EPSS
Exploits1References6
Rows per page
Query Builder