The CleanChanges extension for MediaWiki prior to 1.19.9, 1.20.x prior to 1.20.8, and 1.21.x prior to 1.21.3, when "Group changes by page in recent changes and watchlist" is enabled, allows remote malicious users to obtain sensitive information (revision-deleted IPs) via the Recent Changes page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mediawiki mediawiki 1.20.5 |
||
mediawiki mediawiki 1.20.4 |
||
mediawiki mediawiki 1.20.3 |
||
mediawiki mediawiki 1.20.2 |
||
mediawiki mediawiki 1.20.6 |
||
mediawiki mediawiki 1.20.1 |
||
mediawiki mediawiki 1.20.7 |
||
mediawiki mediawiki 1.20 |
||
mediawiki mediawiki 1.19 |
||
mediawiki mediawiki 1.19.7 |
||
mediawiki mediawiki 1.19.6 |
||
mediawiki mediawiki 1.19.5 |
||
mediawiki mediawiki 1.19.4 |
||
mediawiki mediawiki 1.19.2 |
||
mediawiki mediawiki 1.19.0 |
||
mediawiki mediawiki |
||
mediawiki mediawiki 1.19.3 |
||
mediawiki mediawiki 1.19.1 |
||
mediawiki mediawiki 1.21 |
||
mediawiki mediawiki 1.21.2 |
||
mediawiki mediawiki 1.21.1 |