Description
MediaWiki 1.22.x before 1.22.2, 1.21.x before 1.21.5, and 1.19.x before 1.19.11, when DjVu or PDF file upload support is enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the page parameter to includes/media/DjVu.php; (2) the w parameter (aka width field) to thumb.php, which is not properly handled by includes/media/PdfHandler_body.php; and possibly unspecified vectors in (3) includes/media/Bitmap.php and (4) includes/media/ImageHandler.php.
Remediation
References
Related Vulnerabilities
MySQL CVE-2020-14873 Vulnerability (CVE-2020-14873)
IBM RTC Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-1753)
WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (7.1.04)
Oracle JRE CVE-2020-2778 Vulnerability (CVE-2020-2778)
WordPress Plugin SEO Redirection-301 Redirect Manager Cross-Site Scripting (6.3)