Description
An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. ContentModelChange does not check if a user has correct permissions to create and set the content model of a nonexistent page.
Solution(s)
debian-upgrade-mediawiki
Referenceshttps://attackerkb.com/topics/cve-2021-30155 CVE - 2021-30155 DSA-4889-1