1.38.6

DATE	CVE	VULNERABILITY TITLE	RISK
2023-01-11	CVE-2023-22945	Incorrect Authorization vulnerability in multiple products In the GrowthExperiments extension for MediaWiki through 1.39, the growthmanagementorlist API allows blocked users (blocked in ApiManageMentorList) to enroll as mentors or edit any of their mentorship-related properties. network low complexity mediawiki fedoraproject CWE-863	4.3