Cross-site request forgery (CSRF) vulnerability in Special:CreateCategory in the SemanticForms extension for MediaWiki prior to 1.19.10, 1.2x prior to 1.21.4, and 1.22.x prior to 1.22.1 allows remote malicious users to hijack the authentication of users for requests that create categories via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mediawiki mediawiki 1.22.0 |
||
mediawiki mediawiki 1.21 |
||
mediawiki mediawiki 1.21.1 |
||
mediawiki mediawiki 1.21.2 |
||
mediawiki mediawiki 1.21.3 |
||
mediawiki mediawiki 1.19 |
||
mediawiki mediawiki 1.19.0 |
||
mediawiki mediawiki 1.19.5 |
||
mediawiki mediawiki 1.19.6 |
||
mediawiki mediawiki 1.19.8 |
||
mediawiki mediawiki 1.19.1 |
||
mediawiki mediawiki 1.19.2 |
||
mediawiki mediawiki 1.19.3 |
||
mediawiki mediawiki 1.19.4 |
||
mediawiki mediawiki 1.19.7 |
||
mediawiki mediawiki |