MediaWiki Images Directory Arbitrary Script Upload and Execution Vulnerability

MediaWiki Images Directory Arbitrary Script Upload and Execution Vulnerability

MediaWiki is prone to a vulnerability that allows remote attacker to upload and execute arbitrary scripts. This issue presents itself due to an access validation error and allows unauthorized attackers to upload arbitrary files to the 'images' sub directory residing in the Web root.

MediaWiki 1.3.8 and prior versions are affected by this issue.