Func

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions 1.35.5 and earlier, 1.36.x before 1.36.3, 1.37.x before 1.37.1 **Description** The issue is related to the mishandling of the EditFilterMergedContent hook return value in the Special:ChangeContentModel function. This can allow a title blocked by AbuseFilter to be created, potentially affecting the confidentiality, integrity, and availability of protected information. **Recommendations** For MediaWiki versions 1.35.5 and earlier, update to version 1.35.5 or later. For MediaWiki versions 1.36.x before 1.36.3, update to version 1.36.3 or later. For MediaWiki versions 1.37.x before 1.37.1, update to version 1.37.1 or later. As a temporary workaround, consider restricting access to the Special:ChangeContentModel function until a patch is available.