2 matches found
CVE-2022-28323
An issue was discovered in MediaWiki through 1.37.2. The SecurePoll extension allows a leak because sorting by timestamp is supported,...
CVE-2022-28323
CVE-2022-28323 concerns MediaWiki up to 1.37.2 with the SecurePoll extension. The issue is a leak caused by sorting by timestamp being supported, enabling exposure of information that should be restricted. The CVSS metrics indicate base scores of 5.0 (AV:N/AC:L/PR:N/UI:N/S:U/C:P/I:N/A:N) and 7.5 ...