3 matches found
CVE-2022-23473
Tuleap is an Open Source Suite to improve management of software developments and collaboration. In versions prior to 14.2.99.148, Authorizations are not properly verified when accessing MediaWiki standalone resources. Users with read only permissions for pages are able to also edit them. This on...
CVE-2022-23473
Summary: CVE-2022-23473 affects Tuleap’s MediaWiki standalone plugin. In versions prior to 14.2.99.148 (Community) and 14.2-5, 14.1-6 (Enterprise), authorizations are not properly verified when accessing MediaWiki standalone resources, allowing users with read-only permissions for pages to edit t...
CVE-2022-23473 Tuleap MediaWiki standalone "readers" can also edit pages
Tuleap is an Open Source Suite to improve management of software developments and collaboration. In versions prior to 14.2.99.148, Authorizations are not properly verified when accessing MediaWiki standalone resources. Users with read only permissions for pages are able to also edit them. This on...