Input validation error in MediaWiki

#VU47351 Input validation error in MediaWiki

Published: 2020-09-27 | Updated: 2020-10-06

Vulnerability identifier: #VU47351

Vulnerability risk: Medium

CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-26121

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
MediaWiki
Web applications / CMS

Vendor: MediaWiki.org

Description

The vulnerability allows a remote attacker to compromise the system.

The vulnerability exists due to a mishandled distinction between an upload restriction and a create restriction in the FileImporter extension. A remote attacker can force a wiki to have a page with a disallowed title.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

MediaWiki: 1.34 - 1.34.3

External links
http://commons.wikimedia.org/w/index.php?oldid=454609892#File:Wiki.png
http://gerrit.wikimedia.org/r/q/Ib852a96afc4dca10516d0510e69c10f9892b351b
http://phabricator.wikimedia.org/T262628

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in MediaWiki