VYPR

ReplaceText

by MediaWiki

CVEs (1)

  • CVE-2021-41801Oct 11, 2021
    risk 0.00cvss epss 0.01

    The ReplaceText extension through 1.41 for MediaWiki has Incorrect Access Control. When a user is blocked after submitting a replace job, the job is still run, even if it may be run at a later time (due to the job queue backlog)