Unrated severityNVD Advisory· Published Apr 29, 2022· Updated Aug 3, 2024
CVE-2022-29904
CVE-2022-29904
Description
The SemanticDrilldown extension for MediaWiki through 1.37.2 (before e688bdba6434591b5dff689a45e4d53459954773) allows SQL injection with certain '-' and '_' constraints.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- MediaWiki/SemanticDrilldown extensiondescription
- Range: <=1.37.2
Patches
Vulnerability mechanics
References
2- gerrit.wikimedia.org/r/c/mediawiki/extensions/SemanticDrilldown/+/785213mitrex_refsource_MISC
- phabricator.wikimedia.org/T306463mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.