Redmin

**Name of the Vulnerable Software and Affected Versions** DataDump versions prior to commit 67a82b76e186925330b89ace9c5fd893a300830b **Description** The issue concerns a lack of protection against CSRF attacks in the DataDump MediaWiki extension, allowing forged requests to generate or delete dumps. There are no known workarounds. **Recommendations** For versions prior to commit 67a82b76e186925330b89ace9c5fd893a300830b, completely disable DataDump as there is no other known mitigation.