CVE-2023-45374

Published: 2023-10-09T06:15Z

Last Modified: 2024-11-21T08:26Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An issue was discovered in the SportsTeams extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It does not check for the anti-CSRF edit token in Special:SportsTeamsManager and Special:UpdateFavoriteTeams. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt