Description
In MediaWiki through 1.37, blocked IP addresses are allowed to edit EntitySchema items.
Remediation
References
Related Vulnerabilities
WordPress Plugin Frontend File Manager Cross-Site Request Forgery (21.3)
WordPress Plugin Easy Registration Forms Cross-Site Request Forgery (2.1.1)
osTicket Other Vulnerability (CVE-2006-5407)
Oracle JRE CVE-2014-0463 Vulnerability (CVE-2014-0463)
Moodle Incorrect Default Permissions Vulnerability (CVE-2012-1157)