PT-2019-15537 · Mediawiki · Mediawiki Abusefilter Extension
Luke081515
·
Published
2019-10-29
·
Updated
2019-10-31
·
CVE-2019-18612
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
MediaWiki AbuseFilter extension versions through 1.34
Description
An issue in the AbuseFilter extension allows unprivileged users to view previously hidden filters or their differences, potentially disclosing sensitive information.
Recommendations
For versions through 1.34, update to a version that contains a fix for this issue to prevent the disclosure of sensitive information.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mediawiki Abusefilter Extension