UBUNTU-CVE-2021-30159
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 09 Apr 2021, 07:15
Last modified:27 May 2026, 10:16
Vulnerability Summary
Overall Risk (default)
low
17/100 CVSS Score
4.3 MEDIUM
3.1 (osv_ubuntu)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
09 Apr 2021, 07:15
Published
Vulnerability first disclosed
27 May 2026, 10:16
Last Modified
Vulnerability information updated
Description
An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. Users can bypass intended restrictions on deleting pages in certain "fast double move" situations. MovePage::isValidMoveTarget() uses FOR UPDATE, but it's only called if Title::getArticleID() returns non-zero with no special flags. Next, MovePage::moveToInternal() will delete the page if getArticleID(READ_LATEST) is non-zero. Therefore, if the page is missing in the replica DB, isValidMove() will return true, and then moveToInternal() will unconditionally delete the page if it can be found in the master.
CVSS Metrics
- v3.1•MEDIUM•Score: 4.3CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Affected Systems
- ubuntu•mediawiki
all | all | all | all | all | all
References (5)
- https://ubuntu.com/security/CVE-2021-30159
- https://phabricator.wikimedia.org/T272386
- https://lists.wikimedia.org/pipermail/wikitech-l/2021-April/094418.html
- https://gerrit.wikimedia.org/r/plugins/gitiles/mediawiki/core/+/49ce7dd2143d01cffd4dfd2f2af79b2b93672eac%5E%21/
- https://www.cve.org/CVERecord?id=CVE-2021-30159