Description
An issue was discovered in Mediawiki through 1.37.1. The check for the override-antispoof permission in the AntiSpoof extension is incorrect.
Remediation
References
Related Vulnerabilities
WordPress 'press-this.php' Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.5.1)
WordPress Plugin Variation Swatches for WooCommerce Cross-Site Scripting (2.1.1)
Java Unspesificed Vulnerability (CVE-2018-3169)
Joomla Improper Input Validation Vulnerability (CVE-2006-4468)
Moodle Improper Input Validation Vulnerability (CVE-2006-4935)