Description
An issue was discovered in Mediawiki through 1.37.1. The check for the override-antispoof permission in the AntiSpoof extension is incorrect.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Affiliate Disclosure Security Bypass (1.1.3)
Apache HTTP Server Other Vulnerability (CVE-2000-0869)
WordPress Plugin Infusionsoft Gravity Forms Add-on Arbitrary File Upload (1.5.10)
MySQL CVE-2012-0485 Vulnerability (CVE-2012-0485)
WordPress Plugin Import all XML, CSV & TXT into WordPress Multiple Vulnerabilities (6.5.7)