Wednesday, April 14, 2021

Debian: CVE-2021-30155: mediawiki -- security update

Description
An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. ContentModelChange does not check if a user has correct permissions to create and set the content model of a nonexistent page.
Solution(s)
  • debian-upgrade-mediawiki


  • References
  • https://attackerkb.com/topics/cve-2021-30155
  • CVE - 2021-30155
  • DSA-4889-1




  •  

    Copyright © 2020 Cyber Details - Vulnerability Database™

    Thanks for everything Templateism - You should have written the code a little more complicated