When you add a right in Mediawiki to be used for page protecting, lets say founder, I've went to protect a page, and I've set editing to sysops only and move permissions to founders only. I've then created a account and only gave it sysop rights only, I was able to edit the move rights to a lower level. If a test account with admin rights can do it, so then any other administrator can.
Version: 1.14.x
Severity: major