CVE-2022-28206

An issue was discovered in MediaWiki through 1.37.1. ImportPlanValidator.php in the FileImporter extension mishandles the check for edit rights.

We have discovered 9,727 live websites that are affected by CVE-2022-28206.

Test my site



Affected Software

Product  MediaWiki
Category Wikis
Vulnerable Domains9,727 live websites (53.58% of MediaWiki install base)
Vulnerable Versions
  • from 0 through 1.37.1
Vulnerable Versions Count193 versions ( 82.48% of all versions)



Details

  • Published - Mar 30, 2022
  • Updated - Aug 3, 2024

CVE-2022-28206 usage by Country

United States3,695 websites


Germany1,911 websites
France718 websites
Russia569 websites
Netherlands308 websites
Singapore231 websites
GB214 websites
Switzerland141 websites
Canada130 websites

CVE-2022-28206 usage by TLD

.com2,466 websites
.org2,091 websites
.de877 websites
.net773 websites
.ru480 websites
.info251 websites
.nl192 websites
.fr179 websites
.eu150 websites
.edu98 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2022-28206

Top websites that are affected by CVE-2022-28206. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*******.com United States*,***
****.******.org United States*,***
****.********.org United States*,***
*******.com United States*,***
****.***************.org United States**,***
**.************.com United States**,***
****.*******.org United States**,***
****.*******.org Canada**,***
****.*********.org United States**,***
****.********.org Germany**,***
See full domain list

FAQ

A total of 9,727 websites have been identified as vulnerable to CVE-2022-28206, discovered through global website indexing conducted by WebTechSurvey.
MediaWiki is susceptible to CVE-2022-28206 vulnerability.
MediaWiki versions before, and including, 1.37.1 are vulnerable to CVE-2022-28206.