Filtered by vendor Mediawiki Subscriptions
Filtered by product Createredirect Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-29547 1 Mediawiki 1 Createredirect 2024-11-21 7.5 High
The CreateRedirect extension before 2022-04-14 for MediaWiki does not properly check whether the user has permissions to edit the target page. This could lead to an unauthorised (or blocked) user being able to edit a page.