Description
Cross-site request forgery (CSRF) vulnerability in Special:Upload in MediaWiki 1.17.x before 1.17.3 and 1.18.x before 1.18.2 allows remote attackers to hijack the authentication of unspecified victims for requests that upload files.
Remediation
References
Related Vulnerabilities
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-29903)
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-10202)
Apache Tomcat Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-41079)
PHP CVE-2008-2051 Vulnerability (CVE-2008-2051)
Oracle Application Server CVE-2007-5525 Vulnerability (CVE-2007-5525)