Marcoaurelio

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions through 1.35.2 **Description** An issue in the AbuseFilter extension for MediaWiki allows certain rules related to blocking accounts after account creation to be executed incorrectly. This could enable user accounts to be created while only blocking the IP address used for creation, rather than the account itself. Additionally, a malicious, unprivileged user could utilize such rules to catalog and enumerate numerous IP addresses associated with account creations. **Recommendations** For MediaWiki versions through 1.35.2, update to a version that includes a fix for this issue to prevent incorrect execution of AbuseFilter rules. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions prior to 1.34.0 GlobalBlocking extension before 2020-03-10 **Description** An issue related to IP range evaluation resulted in blocked users re-gaining escalated privileges. This is related to the case in which an IP address is contained in two ranges, one of which is locally disabled. **Recommendations** For MediaWiki versions prior to 1.34.0, update to a version that includes the fix for the IP range evaluation issue in the GlobalBlocking extension. For the GlobalBlocking extension before 2020-03-10, ensure that the IP range evaluation is properly handled to prevent blocked users from re-gaining escalated privileges. As a temporary workaround, consider disabling the locally disabled IP range to minimize the risk of exploitation.