An issue exists in the AbuseFilter extension for MediaWiki. includes/special/SpecialAbuseLog.php allows malicious users to obtain sensitive information, such as deleted/suppressed usernames and summaries, from AbuseLog revision data. This affects REL1_32 and REL1_33.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mediawiki abusefilter 1.32 |
||
mediawiki abusefilter 1.33 |