CVE-2024-34502 | MediaWiki up to 1.39.5/1.40.1/1.41.0 WikibaseLexeme Special:MergeLexemes access control

Inserito da Angelo Barbosa | Mag 5, 2024 | CVE

A vulnerability classified as critical was found in MediaWiki up to 1.39.5/1.40.1/1.41.0. This vulnerability affects unknown code of the file Special:MergeLexemes of the component WikibaseLexeme. The manipulation leads to improper access controls.

This vulnerability was named CVE-2024-34502. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34502 | MediaWiki up to 1.39.5/1.40.1/1.41.0 WikibaseLexeme Special:MergeLexemes access control

Post correlati

CVE-2024-27164 | Toshiba Tec e-Studio Multi-Function Peripheral hard-coded password

CVE-2024-2481 | Surya2Developer Hostel Management System 1.0 manage-students.php del access control

CVE-2023-50030 | Jms Setting Module up to 1.1.0 on PrestaShop getSecondImgs sql injection

CVE-2024-51300 | Draytek Vigor 3900 1.5.1.3 mainfunction.cgi get_rrd command injection