CVE-2020-35625
HIGH WAF: Low
CVSS 8.8
Published: 2020-12-21
CWE-862
An issue was discovered in the Widgets extension for MediaWiki through 1.35.1. Any user with the ability to edit pages within the Widgets namespace could call any static function within any class (defined within PHP or MediaWiki) via a crafted HTML comment, related to a Smarty template. For example, a person in the Widget Editors group could use \MediaWiki\Shell\Shell::command within a comment.
WAF Coverage Analysis
Missing Authorization
Low WAF Coverage
OWASP: A01:2021 Broken Access Control
Affected Software
| Vendor | Product | Version |
|---|---|---|
| mediawiki | mediawiki | up to 1.35.1 |
References
- gerrit.wikimedia.org (Third Party Advisory)
- phabricator.wikimedia.org (Third Party Advisory)