Wednesday, April 14, 2021

Debian: CVE-2021-30152: mediawiki -- security update

Description
An issue was discovered in MediaWiki before 1.31.13 and 1.32.x through 1.35.x before 1.35.2. When using the MediaWiki API to "protect" a page, a user is currently able to protect to a higher level than they currently have permissions for.
Solution(s)
  • debian-upgrade-mediawiki


  • References
  • https://attackerkb.com/topics/cve-2021-30152
  • CVE - 2021-30152
  • DSA-4889-1




  •  

    Copyright © 2020 Cyber Details - Vulnerability Database™

    Thanks for everything Templateism - You should have written the code a little more complicated