CVE-2023-36674

Posted on 2023년 8월 21일2023년 8월 21일 by admin

CVE-2023-36674

An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, 1.39.x before 1.39.4, and 1.40.x before 1.40.1. It is possible to bypass the Bad image list (aka badFile) by using the thumb parameter (aka Manualthumb) of the File syntax.

Source: CVE-2023-36674

답글 남기기 응답 취소