---

CVE-2022-28209 - log back

CVE-2022-28209 edited at 12 Apr 2022 21:09:23
Severity	- Unknown + Critical

CVE-2022-28209 edited at 12 Apr 2022 20:57:42
Notes	- needs more research: check wether AntiSpoof extension is included in package + pkgbuild does not contain the AntiSpoof extension

CVE-2022-28209 edited at 12 Apr 2022 20:54:29
Notes	- needs more research + needs more research: check wether AntiSpoof extension is included in package

CVE-2022-28209 created at 06 Apr 2022 13:37:05
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description	+ An issue was discovered in Mediawiki through 1.37.1. The check for the override-antispoof permission in the AntiSpoof extension is incorrect.
References	+ https://gerrit.wikimedia.org/r/q/Id8c4e2e336695ce70ccdf8a51ad729bf4a99f8f7 + https://phabricator.wikimedia.org/T304126
Notes	+ needs more research