Description

An issue was discovered in the Translate extension in MediaWiki through 1.36.2. Oversighters cannot undo revisions or oversight on pages where they suppressed information (such as PII). This allows oversighters to whitewash revisions.

Remediation

References

CVE-2021-42049

Related Vulnerabilities

Oracle JRE CVE-2020-2830 Vulnerability (CVE-2020-2830)

Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16725)

Oracle Database Server CVE-2020-2511 Vulnerability (CVE-2020-2511)

Oracle Application Server Other Vulnerability (CVE-2005-3445)

WordPress Plugin Easy Forms for Mailchimp Unspecified Vulnerability (6.6.2)

Severity

Medium

Classification

CVE-2021-42049 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities