CVE-2022-29547
EUVD-2022-3388221.04.2022, 01:15
The CreateRedirect extension before 2022-04-14 for MediaWiki does not properly check whether the user has permissions to edit the target page. This could lead to an unauthorised (or blocked) user being able to edit a page.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| mediawiki | createredirect | 𝑥 < 2022-04-14 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References