CVE-2021-36132

CVE-2021-36132

An issue was discovered in the FileImporter extension in MediaWiki through 1.36. For certain relaxed configurations of the $wgFileImporterRequiredRight variable, it might not validate all appropriate user rights, thus allowing a user with insufficient rights to perform operations (specifically file uploads) that they should not be allowed to perform.

Source: CVE-2021-36132

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다