CVE-2024-34701 | miraheze CreateWiki REST Endpoint Special:RequestWikiQueue wgCreateWikiGlobalWiki authorization

Inserito da Angelo Barbosa | Mag 13, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in miraheze CreateWiki. Affected by this issue is some unknown functionality of the file Special:RequestWikiQueue of the component REST Endpoint. The manipulation of the argument wgCreateWikiGlobalWiki leads to incorrect authorization.

This vulnerability is handled as CVE-2024-34701. The attack may be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-34701 | miraheze CreateWiki REST Endpoint Special:RequestWikiQueue wgCreateWikiGlobalWiki authorization

Post correlati

CVE-2024-26559 | uverif 2.0 information disclosure

CVE-2024-7336 | TOTOLINK EX200 4.0.3c.7646_B20201211 /cgi-bin/cstecgi.cgi loginauth http_host buffer overflow

CVE-2024-8253 | Post Grid and Gutenberg Blocks Plugin 2.2.87/2.2.88/2.2.89/2.2.90 on WordPress Privilege Escalation

CVE-2023-40533 | Tinyproxy 1.11.1 HTTP Request uninitialized variable (TALOS-2023-1902)