Description

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. MassEditRegex allows CSRF.

Remediation

References

CVE-2021-46147

Related Vulnerabilities

MySQL Other Vulnerability (CVE-2007-5970)

WordPress 3.8.x Multiple Vulnerabilities (3.8 - 3.8.29)

WordPress Plugin Side Menu Lite-add sticky fixed buttons SQL Injection (2.2.1)

WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (8.0.17)

Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-0434)

Severity

High

Classification

CVE-2021-46147 CWE-352 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities