Bugzilla |
1948642 |
Bug #1948642 - CVE-2021-30155 mediawiki: ContentModelChange does not check if a user has correct permissions to create and set the content model of a nonexistent page [fedora-all] |
https://bugzilla.redhat.com/show_bug.cgi?id=1948642
|
Bugzilla |
1948644 |
Bug #1948644 - CVE-2021-30156 mediawiki: Special:Contributions toolbar reveals existence of hidden users [fedora-all] |
https://bugzilla.redhat.com/show_bug.cgi?id=1948644
|
Bugzilla |
1947660 |
Bug #1947660 - mediawiki-1.35.2 is available |
https://bugzilla.redhat.com/show_bug.cgi?id=1947660
|
Bugzilla |
1946691 |
Bug #1946691 - CVE-2021-30154 mediawiki: XSS due to unescaped messages used in HTML on Special:NewFiles [fedora-all] |
https://bugzilla.redhat.com/show_bug.cgi?id=1946691
|
Bugzilla |
1948639 |
Bug #1948639 - CVE-2021-30159 mediawiki: users can bypass intended restrictions on deleting pages in certain "fast double move" situations [fedora-all] |
https://bugzilla.redhat.com/show_bug.cgi?id=1948639
|
Bugzilla |
1946693 |
Bug #1946693 - CVE-2021-30157 mediawiki: XSS due to unescaped messages used in HTML on ChangesList pages [fedora-all] |
https://bugzilla.redhat.com/show_bug.cgi?id=1946693
|
Bugzilla |
1948637 |
Bug #1948637 - CVE-2021-30152 mediawiki: action=protect lets users with 'protect' permission protect to higher protection level [fedora-all] |
https://bugzilla.redhat.com/show_bug.cgi?id=1948637
|
Bugzilla |
1946699 |
Bug #1946699 - CVE-2021-30158 mediawiki: blocked users are unable to use Special:ResetTokens [fedora-all] |
https://bugzilla.redhat.com/show_bug.cgi?id=1946699
|