Description In MediaWiki through 1.37, blocked IP addresses are allowed to edit EntitySchema items. Remediation References CVE-2021-45471 Related Vulnerabilities MySQL CVE-2019-2960 Vulnerability (CVE-2019-2960) WordPress Plugin Formidable Forms-Contact Form, Survey, Quiz, Calculator & Custom Form Builder Security Bypass (6.0.1) WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Cross-Site Scripting (3.5.8) Internet Information Services Other Vulnerability (CVE-2000-0630) WordPress Plugin Analytics Tracker Cross-Site Scripting (1.1.0) Severity Medium Classification CVE-2021-45471 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N Tags Missing Update Known Vulnerabilities