Description
In MediaWiki through 1.37, blocked IP addresses are allowed to edit EntitySchema items.
Remediation
References
Related Vulnerabilities
WordPress Plugin CF7 Invisible reCAPTCHA Cross-Site Scripting (1.3.1)
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-1607)
WordPress Plugin Simple Schools Staff Directory Arbitrary File Upload (1.1)
WordPress Plugin Facebook, Twitter & Google+ Social Widgets Multiple Vulnerabilities (1.3.7)