PKSA-kgmc-xj3p-ddfr Security Advisory
-
[CRITICAL] Direct POST to Special:ChangeEmail will bypass reauth check
PKSA-kgmc-xj3p-ddfr CVE-2019-12468 GHSA-wrhx-3pxr-6vgg
Affected package: mediawiki/core
Affected version: >=1.27.0,<1.27.6|>=1.30.0,<1.30.2|>=1.31.0,<1.31.2|>=1.32.0,<1.32.2
Reported by:
GitHub, FriendsOfPHP/security-advisories