Description
An issue was discovered in MediaWiki through 1.37.1. ImportPlanValidator.php in the FileImporter extension mishandles the check for edit rights.
Remediation
References
Related Vulnerabilities
WordPress Plugin Search & Replace SQL Injection (3.2.1)
MySQL CVE-2021-35607 Vulnerability (CVE-2021-35607)
MySQL Other Vulnerability (CVE-2007-6304)
WordPress Plugin Fancy Product Designer-WooCommerce Cross-Site Request Forgery (4.7.5)
WordPress Plugin 0mk Shortener Cross-Site Request Forgery (0.2)