CVE-2017-8810
CVE-2017-8810 affects MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2. On private wikis, login failures reveal whether a username exists, enabling account enumeration and brute-force attempts via multiple requests. Remediation across sources recommends upgrading to fixed v...