mediawiki/core is vulnerable to authorization bypass. The rules in Title Blacklist for creating a page can be bypassed when using redirect=1
in the action API when editing that page. This vulnerability can likely be exploited to bypass the `` permission.
CPE | Name | Operator | Version |
---|---|---|---|
mediawiki/core | le | 1.32.0 | |
mediawiki/core | le | 1.32.0 |