Dreamy_Jazz

**Name of the Vulnerable Software and Affected Versions** MediaWiki - ReportIncident Extension versions 1.43.7, 1.44.4, and 1.45.2 **Description** The ReportIncident Extension in MediaWiki is susceptible to HTTP Denial of Service (DoS) attacks due to unrestricted resource allocation and a lack of throttling. This allows an attacker to exhaust server resources by sending a large number of HTTP requests. **Recommendations** Update to a newer version of the ReportIncident Extension that addresses this resource allocation issue. Update to a newer version of MediaWiki that addresses this resource allocation issue.

**Name of the Vulnerable Software and Affected Versions** Mediawiki - CheckUser Extension versions prior to 1.39 **Description** A flaw exists within the CheckUser Extension of Mediawiki that can lead to the exposure of sensitive information to unauthorized actors, specifically enabling footprinting. This issue impacts the Mediawiki - CheckUser Extension. **Recommendations** Update to a version newer than 1.39.

**Name of the Vulnerable Software and Affected Versions** MediaWiki GlobalBlocking extension versions 1.43 and 1.44 **Description** The MediaWiki GlobalBlocking extension contains a flaw related to improper input handling during web page generation, potentially leading to Stored Cross-site Scripting (XSS). This issue could allow an attacker to inject malicious scripts into web pages viewed by other users. The affected component is the GlobalBlocking extension. **Recommendations** Update the MediaWiki GlobalBlocking extension to a fixed version.

**Name of the Vulnerable Software and Affected Versions** Wikimedia Foundation Mediawiki - CirrusSearch Extension versions prior to 1.43 **Description** A flaw exists in the Wikimedia Foundation Mediawiki - CirrusSearch Extension related to the allocation of resources without limits or throttling, which can lead to a denial-of-service (DoS) attack via HTTP. **Recommendations** Update to Mediawiki - CirrusSearch Extension version 1.43 or later.

Name of the Vulnerable Software and Affected Versions: Mediawiki - CheckUser extension versions 1.39.0 through 1.39.12 Mediawiki - CheckUser extension versions 1.42.0 through 1.42.6 Mediawiki - CheckUser extension versions 1.43.0 through 1.43.1 Description: The issue is related to the rendering of specific internationalized messages without proper escaping in the Account information tab of the Special:Investigate page. Attackers can exploit this by appending ?uselang=x-xss to the URL, causing reflected XSS when the UI renders affected message keys. Recommendations: For versions 1.39.0 through 1.39.12, update to version 1.39.13 or later. For versions 1.42.0 through 1.42.6, update to version 1.42.7 or later. For versions 1.43.0 through 1.43.1, update to version 1.43.2 or later.

**Name of the Vulnerable Software and Affected Versions:** MediaWiki - CheckUser extension versions 1.39.X through 1.39.13 MediaWiki - CheckUser extension versions 1.42.X through 1.42.7 MediaWiki - CheckUser extension versions 1.43.X through 1.43.2 **Description:** The Special:CheckUser interface is susceptible to reflected Cross-Site Scripting (XSS) via the `rev-deleted-user` message. This message is processed without sufficient sanitization, enabling the injection of JavaScript code through the `uselang=x-xss` language override mechanism. **Recommendations:** MediaWiki - CheckUser extension versions 1.39.X through 1.39.13: Update to version 1.39.14 or later. MediaWiki - CheckUser extension versions 1.42.X through 1.42.7: Update to version 1.42.8 or later. MediaWiki - CheckUser extension versions 1.43.X through 1.43.2: Update to version 1.43.3 or later.

Name of the Vulnerable Software and Affected Versions: Mediawiki - AbuseFilter Extension versions 1.39.0 through 1.39.12 Mediawiki - AbuseFilter Extension versions 1.42.0 through 1.42.6 Mediawiki - AbuseFilter Extension versions 1.43.0 through 1.43.1 Description: The issue is related to a Missing Authorization vulnerability in the Mediawiki - AbuseFilter Extension, allowing unauthorized access. Recommendations: For versions 1.39.0 through 1.39.12, update to version 1.39.13 or later. For versions 1.42.0 through 1.42.6, update to version 1.42.7 or later. For versions 1.43.0 through 1.43.1, update to version 1.43.2 or later.

Name of the Vulnerable Software and Affected Versions: Mediawiki - FlaggedRevs Extension versions 1.43.X through 1.43.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-Site Scripting (XSS). This allows for Cross-Site Scripting (XSS) in the Mediawiki - FlaggedRevs Extension. Recommendations: For versions 1.43.X through 1.43.1, update to version 1.43.2 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: AbuseFilter versions 1.43.0 through 1.43.0 Description: The issue is related to the exposure of sensitive information to an unauthorized actor. It affects program files includes/Api/QueryAbuseLog.Php, includes/Pager/AbuseLogPager.Php, includes/Special/SpecialAbuseLog.Php, includes/View/AbuseFilterViewExamine.Php. Recommendations: For AbuseFilter version 1.43.0, update to version 1.43.1 to resolve the issue. As a temporary workaround, consider restricting access to the affected program files until a patch is available.

**Name of the Vulnerable Software and Affected Versions** MediaWiki CheckUser extension versions through 1.42.1 **Description** An issue was discovered in the CheckUser extension for MediaWiki. The API can expose suppressed information for log events, as the `log deleted` attribute is not applied to entries. **Recommendations** For versions through 1.42.1, consider restricting access to the API until a patch is available. As a temporary workaround, avoid using the API for log events to minimize the risk of exposing suppressed information. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MediaWiki CheckUser extension versions through 1.42.1 **Description** The Special:Investigate feature can expose suppressed information for log events due to the TimelineService not supporting proper suppression. **Recommendations** For versions through 1.42.1, consider disabling the Special:Investigate feature until a patch is available to prevent the exposure of suppressed information. Restrict access to the TimelineService to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MediaWiki CheckUser extension versions through 1.42.1 **Description** An issue was discovered in the CheckUser extension for MediaWiki. It can expose suppressed information for log events, as the `log deleted` attribute is not respected. **Recommendations** For versions through 1.42.1, consider updating to a version where this issue is fixed, as the current version can expose sensitive information. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions prior to 1.39.7 MediaWiki versions 1.40.x prior to 1.40.3 MediaWiki versions 1.41.x prior to 1.41.1 **Description** An issue in the `includes/specials/SpecialMovePage.php` file of MediaWiki can lead to a denial of service. If a user with the necessary rights to move a page opens `Special:MovePage` for a page with tens of thousands of subpages, the page will exceed the maximum request time, resulting in a denial of service. **Recommendations** For MediaWiki versions prior to 1.39.7, update to version 1.39.7 or later. For MediaWiki versions 1.40.x prior to 1.40.3, update to version 1.40.3 or later. For MediaWiki versions 1.41.x prior to 1.41.1, update to version 1.41.1 or later. As a temporary workaround, consider restricting access to the `Special:MovePage` page for users with the necessary rights to move pages, especially for pages with a large number of subpages.

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions prior to 1.40.2 GlobalBlocking extension versions prior to 1.40.2 **Description** The issue is related to the GlobalBlocking extension in MediaWiki, where improper input neutralization during web page creation can lead to security issues. An attacker can exploit this to perform cross-site scripting attacks. Specifically, for a `Special:GlobalBlock?uselang=x-xss` URI, i18n-based XSS can occur via the parentheses message, affecting subtitle links in `buildSubtitleLinks`. **Recommendations** For MediaWiki versions prior to 1.40.2, update to version 1.40.2 or later to resolve the issue. For the GlobalBlocking extension, ensure it is updated to a version compatible with MediaWiki 1.40.2 or later. As a temporary workaround, consider restricting access to the `Special:GlobalBlock` page until the update is applied. Avoid using the `uselang` parameter with the `x-xss` value in the `Special:GlobalBlock` URI until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions prior to 1.35.14 MediaWiki versions 1.36.x through 1.39.x before 1.39.6 MediaWiki versions 1.40.x before 1.40.2 **Description** An issue in the CheckUser extension allows XSS to occur via message definitions, for example, in SpecialCheckUserLog. This can enable a remote attacker to perform cross-site scripting attacks. **Recommendations** For versions prior to 1.35.14, update to version 1.35.14 or later. For versions 1.36.x through 1.39.x, update to version 1.39.6 or later. For versions 1.40.x, update to version 1.40.2 or later.

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions prior to 1.35.14 MediaWiki versions 1.36.x through 1.39.x before 1.39.6 MediaWiki versions 1.40.x before 1.40.2 **Description** The issue is related to improper input neutralization during web page creation, which can lead to cross-site scripting (XSS) attacks. This can be exploited by a remote attacker, allowing them to perform XSS attacks on Special:log/rights. The vulnerability is specifically related to group-*-member messages in the includes/logging/RightsLogFormatter.php file. **Recommendations** For MediaWiki versions prior to 1.35.14, update to version 1.35.14 or later. For MediaWiki versions 1.36.x through 1.39.x before 1.39.6, update to version 1.39.6 or later. For MediaWiki versions 1.40.x before 1.40.2, update to version 1.40.2 or later. As a temporary workaround, consider restricting access to the Special:log/rights page until a patch is available.

**Name of the Vulnerable Software and Affected Versions** MediaWiki CheckUser extension versions through 1.39.3 **Description** An issue was discovered in the "CheckUserLog API" in the CheckUser extension for MediaWiki. There is incorrect access control for visibility of hidden users. **Recommendations** For MediaWiki CheckUser extension versions through 1.39.3, update to a version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** CheckUser extension for MediaWiki versions through 1.39.3 **Description** An issue in the CheckUser extension for MediaWiki allows HTML injection through the User-Agent HTTP request header in Special:CheckUser when performing a "get edits" type check. **Recommendations** For CheckUser extension for MediaWiki versions through 1.39.3, consider disabling the "get edits" type check in Special:CheckUser until a patch is available to prevent HTML injection through the User-Agent HTTP request header.

**Name of the Vulnerable Software and Affected Versions** MediaWiki CheckUser extension versions through 1.39.x **Description** An issue in the CheckUser extension for MediaWiki exposes information on the performer of edits and logged actions, which should only be viewable by users with suppression or checkuser rights. **Recommendations** For MediaWiki CheckUser extension versions through 1.39.x, restrict access to components that expose sensitive information to users with suppression or checkuser rights until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.