MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability - CVE-2021-30152
Reference:
CVE-2021-30152
Title:
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability
Overview:
An issue was discovered in MediaWiki before 1.31.13 and 1.32.x through 1.35.x before 1.35.2. When using the MediaWiki API to quotprotectquot a page a user is currently able to protect to a higher level than they currently have permissions for.