---

CVE-2022-28206 - log back

CVE-2022-28206 edited at 12 Apr 2022 21:08:22
Severity	- Unknown + Critical

CVE-2022-28206 edited at 12 Apr 2022 21:02:59
Notes	- needs more research + pkgbuild does not build affected extension

CVE-2022-28206 created at 06 Apr 2022 13:35:40
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description	+ An issue was discovered in MediaWiki through 1.37.1. ImportPlanValidator.php in the FileImporter extension mishandles the check for edit rights.
References	+ https://gerrit.wikimedia.org/r/q/I84be9cd3639b8ab0e037a4ec2d3f2f478f0989c5 + https://phabricator.wikimedia.org/T294256
Notes	+ needs more research