CVEDB API

Vulnerabilities

Vulnerable Software

Mediawiki: >> Abusefilter Security Vulnerabilities

CVE-2019-16528

An issue was discovered in the AbuseFilter extension for MediaWiki. includes/special/SpecialAbuseLog.php allows attackers to obtain sensitive information, such as deleted/suppressed usernames and summaries, from AbuseLog revision data. This affects REL1_32 and REL1_33.

CVSS Score

7.5

EPSS Score

0.004

Published

2020-03-20

CVE-2019-18987

An issue was discovered in the AbuseFilter extension through 1.34 for MediaWiki. Once a specific abuse filter has (accidentally or otherwise) been made public, its previous versions can be exposed, thus potentially disclosing private or sensitive information within the filter's definition.

CVSS Score

5.3

EPSS Score

0.004

Published

2019-11-15

CVE-2019-18612

An issue was discovered in the AbuseFilter extension through 1.34 for MediaWiki. Previously hidden (restricted) AbuseFilter filters were viewable (or their differences were viewable) to unprivileged users, thus disclosing potentially sensitive information.

CVSS Score

5.3

EPSS Score

0.003

Published

2019-10-29

Page 1

Vulnerabilities

Vulnerable Software

Mediawiki: >> Abusefilter Security Vulnerabilities

Products

Pricing

Contact Us