Security Advisory

CVE-2024-29898

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-28 13:43:07

Last updated 2024-08-02 01:17:58

Assigner GitHub_M

State PUBLISHED

Description

CreateWiki is Mirahezes MediaWiki extension for requesting & creating wikis. An oversight during the writing of the patch for CVE-2024-29897 may have exposed suppressed wiki requests to private wikis that added Special:RequestWikiQueue to the read whitelist to users without the `(read)` permission. This vulnerability is fixed in 8f8442ed5299510ea3e58416004b9334134c149c.

← Browse all CVEs View on cve.org ↗