CVE-2016-6336

MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote authenticated users with undelete permissions to bypass intended suppressrevision and deleterevision restrictions and remove the revision deletion status of arbitrary file revisions by using Special:Undelete.

Published: Apr 20, 2017
Updated: Apr 13, 2023
CVE: CVE-2016-6336
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:N/I:P/A:N

CWEs:

CWE-284

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
mediawiki / mediawiki	1.26.4	1.26.4.x
mediawiki / mediawiki	-	1.23.14.x
mediawiki / mediawiki	1.26.3	1.26.3.x
mediawiki / mediawiki	1.27.0	1.27.0.x
mediawiki / mediawiki	1.26.1	1.26.1.x
mediawiki / mediawiki	1.26.0	1.26.0.x
mediawiki / mediawiki	1.26.2	1.26.2.x

https://bugzilla.redhat.com/show_bug.cgi?id=1369613
https://lists.wikimedia.org/pipermail/mediawiki-announce/2016-August/000195.html
https://phabricator.wikimedia.org/T132926

Vulnerability Database

290,020

CVE-2016-6336