CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mediawiki: >> Mediawiki >> 1.38.6 Security Vulnerabilities

CVE-2023-22945

In the GrowthExperiments extension for MediaWiki through 1.39, the growthmanagementorlist API allows blocked users (blocked in ApiManageMentorList) to enroll as mentors or edit any of their mentorship-related properties.

CVSS Score

4.3

EPSS Score

0.003

Published

2023-01-11

Page 7

Vulnerabilities

Vulnerable Software

Mediawiki: >> Mediawiki >> 1.38.6 Security Vulnerabilities

Products

Pricing

Contact Us