Shpdg

**Name of the Vulnerable Software and Affected Versions** Scratch Login (MediaWiki extension) versions prior to 1.1 **Description** The issue allows any account to be logged into by using the same username with leading, trailing, or repeated underscore(s), as these are treated as whitespace and trimmed by MediaWiki. This affects all users on any wiki using the Scratch Login extension. **Recommendations** For versions prior to 1.1, update to version 1.1 or later to resolve the issue.