5 matches found
CVE-2023-29203 Unauthenticated user can have information about hidden users on subwikis through uorgsuggest.vm
XWiki Commons are technical libraries common to several other top level XWiki projects. It's possible to list some users who are normally not viewable from subwiki by requesting users on a subwiki which allows only global users with uorgsuggest.vm. This issue only concerns hidden users from main...
MediaWiki 信息泄露漏洞
MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. The product can be used to deploy internal knowledge management and content management systems. MediaWiki suffers from an information disclosure vulnerability that results from the program...
CVE-2020-35480
An issue was discovered in MediaWiki before 1.35.1. Missing users accounts that don't exist and hidden users accounts that have been explicitly hidden due to being abusive, or similar that the viewer cannot see are handled differently, exposing sensitive information about the hidden status to...
MediaWiki Special:UserRights Code Issue Vulnerability
MediaWiki is a set of free and freely available web-based Wiki engines from the MediaWiki Wikimedia Foundation in the United States. It can be used to deploy in-house knowledge management and content management systems. MediaWiki has a code issue vulnerability that can be exploited by attackers t...
That one with Sam the FV key value to the hidden clone account method-vulnerability warning-the black bar safety net
| The principle is very simple Ah sam FV key value. focus on how to avoid detection Generally the detection of clone accounts is the detection of the sam inside there not the same FV. use this feature to bypass the detection. huh --- Step 1.net user allyesno freexploit /add&net localgroup...