High severity8.8NVD Advisory· Published Apr 13, 2018· Updated Jun 17, 2026
CVE-2017-0362
CVE-2017-0362
Description
Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where the "Mark all pages visited" on the watchlist does not require a CSRF token.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <1.28.1 / 1.27.2 / 1.23.16
Patches
Vulnerability mechanics
References
3- lists.wikimedia.org/pipermail/mediawiki-announce/2017-April/000207.htmlnvdVendor Advisory
- phabricator.wikimedia.org/T150044nvdIssue TrackingThird Party Advisory
- security-tracker.debian.org/tracker/CVE-2017-0362nvdThird Party Advisory
News mentions
0No linked articles in our index yet.