An issue was discovered in the ArticleRatings extension for MediaWiki through 1.42.1. Special:ChangeRating allows CSRF to alter data via a GET request.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://phabricator.wikimedia.org/T363884 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-07-06T00:00:00
Updated: 2024-08-02T04:33:11.671Z
Reserved: 2024-07-06T00:00:00
Link: CVE-2024-40603
Vulnrichment
Updated: 2024-07-08T13:44:58.724Z
NVD
Status : Analyzed
Published: 2024-07-07T00:15:10.617
Modified: 2024-07-09T16:37:50.650
Link: CVE-2024-40603
Redhat
No data.