Mediawiki · Mediawiki · CVE-2025-32697
Name of the Vulnerable Software and Affected Versions:
MediaWiki versions prior to 1.42.6, 1.43.1
Description:
The issue is related to an Improper Preservation of Permissions vulnerability. It affects program files such as `includes/editpage/IntroMessageBuilder.Php`, `includes/Permissions/PermissionManager.Php`, and `includes/Permissions/RestrictionStore.Php`.
Recommendations:
For versions prior to 1.42.6, update to version 1.42.6 or later.
For version 1.43.0, update to version 1.43.1 or later.
As a temporary workaround, consider restricting access to the affected program files until a patch is available.