CVE-2022-29547

The CreateRedirect extension before 2022-04-14 for MediaWiki does not properly check whether the user has permissions to edit the target page. This could lead to an unauthorised (or blocked) user being able to edit a page.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:mediawiki:createredirect:*:*:*:*:*:mediawiki:*:*

Information

Published : 2022-04-20 18:15

Updated : 2022-05-02 11:05


NVD link : CVE-2022-29547

Mitre link : CVE-2022-29547


JSON object : View

CWE
CWE-276

Incorrect Default Permissions

Advertisement

dedicated server usa

Products Affected

mediawiki

  • createredirect