Translations:2021-12 security release/FAQ/1/en

A series of vulnerabilities have been found in MediaWiki that allow an attacker to leak page contents from private wikis and bypass edit permissions. The main vector for this wiki-leak is using vulnerable actions on pages that are listed in and therefore publicly accessible. MediaWiki now only makes the "view" action publicly accessible on pages in by default. These issues are fixed in 1.35.5, 1.36.3, and 1.37.1.