Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2022-39193

Опубликовано: 20 янв. 2023
Источник: nvd
CVSS3: 5.3
EPSS Низкий

Описание

An issue was discovered in the CheckUser extension for MediaWiki through 1.39.x. Various components of this extension can expose information on the performer of edits and logged actions. This information should not allow public viewing: it is supposed to be viewable only by users with suppression rights.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:mediawiki:mediawiki:1.39.0:-:*:*:*:*:*:*
cpe:2.3:a:mediawiki:mediawiki:1.39.0:rc0:*:*:*:*:*:*
cpe:2.3:a:mediawiki:mediawiki:1.39.0:rc1:*:*:*:*:*:*
cpe:2.3:a:mediawiki:mediawiki:1.39.1:*:*:*:*:*:*:*

EPSS

Процентиль: 38%
0.00169
Низкий

5.3 Medium

CVSS3

Дефекты

CWE-200
CWE-200

Связанные уязвимости

redhat логотип

CVE-2022-39193

CVSS3: 3.5
redhat
около 3 лет назад

An issue was discovered in the CheckUser extension for MediaWiki through 1.39.x. Various components of this extension can expose information on the performer of edits and logged actions. This information should not allow public viewing: it is supposed to be viewable only by users with suppression rights.

github логотип

GHSA-5jq2-gw2c-fg5h

CVSS3: 5.3
github
около 3 лет назад

An issue was discovered in the CheckUser extension for MediaWiki through 1.39.x. Various components of this extension can expose information on the performer of edits and logged actions. This information should not allow public viewing: it is supposed to be viewable only by users with checkuser access.

EPSS

Процентиль: 38%
0.00169
Низкий

5.3 Medium

CVSS3

Дефекты

CWE-200
CWE-200
Уязвимость CVE-2022-39193