CVE-2024-40603 Information

Description

An issue was discovered in the ArticleRatings extension for MediaWiki through 1.42.1. Special:ChangeRating allows CSRF to alter data via a GET request.

Reference

https://phabricator.wikimedia.org/T363884