2 matches found
CVE-2022-29547
The CreateRedirect extension before 2022-04-14 for MediaWiki does not properly check whether the user has permissions to edit the target page. This could lead to an unauthorised or blocked user being able to edit a page...
CVE-2022-29547
The CVE-2022-29547 entry concerns MediaWiki’s CreateRedirect extension before 2022-04-14, where the extension fails to verify a user’s permission to edit the target page. This leads to unauthorised (or blocked) users being able to edit pages. Documented details indicate the issue stems from impro...