Description
Cross-site request forgery (CSRF) vulnerability in Special:Upload in MediaWiki 1.17.x before 1.17.3 and 1.18.x before 1.18.2 allows remote attackers to hijack the authentication of unspecified victims for requests that upload files.
Remediation
References
Related Vulnerabilities
WordPress Plugin Content Grabber Multiple Vulnerabilities (1.0)
Apache HTTP Server Other Vulnerability (CVE-2003-0189)
WordPress Use of Insufficiently Random Values Vulnerability (CVE-2017-17091)
RubyGems 7PK - Security Features Vulnerability (CVE-2015-3900)
MongoDb Improper Input Validation Vulnerability (CVE-2020-7925)