Описание
An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It incorrectly logged sensitive suppression deletions, which should not have been visible to users with access to view AbuseFilter log data.
Ссылки
- Issue TrackingThird Party Advisory
- Third Party Advisory
- Issue TrackingThird Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.35.2 (включая)
cpe:2.3:a:mediawiki:mediawiki:*:*:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.00111
Низкий
4.3 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-532
Связанные уязвимости
CVSS3: 4.3
github
больше 3 лет назад
An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It incorrectly logged sensitive suppression deletions, which should not have been visible to users with access to view AbuseFilter log data.
EPSS
Процентиль: 30%
0.00111
Низкий
4.3 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-532