An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. MassEditRegex allows CSRF.
2022-01-10T14:11:27.590
2024-11-21T06:33:41.260
Modified
CVSSv3.1: 8.8 (HIGH)
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.6
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | mediawiki | mediawiki | < 1.35.5 | Yes |
| Application | mediawiki | mediawiki | < 1.36.3 | Yes |
| Application | mediawiki | mediawiki | < 1.37.1 | Yes |