CVE-2011-1580

描述

The transwiki import functionality in MediaWiki before 1.16.3 does not properly check privileges, which allows remote authenticated users to perform imports from any wgImportSources wiki via a crafted POST request.

受影響套件(1)

• Debian/mediawikifrom 0, < 1:1.15.5-5

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-1580