Vulnerability: Disclosure of Hidden AbuseFilter Filters in MediaWiki

Vulnerability: Disclosure of Hidden AbuseFilter Filters in MediaWiki

CVE-2019-18612 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

An issue was discovered in the AbuseFilter extension through 1.34 for MediaWiki. Previously hidden (restricted) AbuseFilter filters were viewable (or their differences were viewable) to unprivileged users, thus disclosing potentially sensitive information.

Learn more about our User Device Pen Test.