PT-2025-28247 · Mediawiki · Abusefilter Extension +1

Dreamy_Jazz

·

Published

2025-07-07

·

Updated

2025-07-07

·

CVE-2025-53499

CVSS v3.1
9.1
VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Name of the Vulnerable Software and Affected Versions: Mediawiki - AbuseFilter Extension versions 1.39.0 through 1.39.12 Mediawiki - AbuseFilter Extension versions 1.42.0 through 1.42.6 Mediawiki - AbuseFilter Extension versions 1.43.0 through 1.43.1
Description: The issue is related to a Missing Authorization vulnerability in the Mediawiki - AbuseFilter Extension, allowing unauthorized access.
Recommendations: For versions 1.39.0 through 1.39.12, update to version 1.39.13 or later. For versions 1.42.0 through 1.42.6, update to version 1.42.7 or later. For versions 1.43.0 through 1.43.1, update to version 1.43.2 or later.

Fix

Missing Authorization

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2025-53499

Affected Products

Abusefilter Extension
Mediawiki