Security Advisories - PKSA-kgmc-xj3p-ddfr - Packagist

PKSA-kgmc-xj3p-ddfr Security Advisory

[CRITICAL] Direct POST to Special:ChangeEmail will bypass reauth check

PKSA-kgmc-xj3p-ddfr CVE-2019-12468 GHSA-wrhx-3pxr-6vgg

Affected package: mediawiki/core

Affected version: >=1.27.0,<1.27.6|>=1.30.0,<1.30.2|>=1.31.0,<1.31.2|>=1.32.0,<1.32.2

Reported by:
GitHub, FriendsOfPHP/security-advisories