8 matches found
EUVD-2013-4427
Malware in sbrugna...
EUVD-2022-44937
Malicious code in bioql PyPI...
CVE-2021-31545
An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. The pagerecentcontributors leaked the existence of certain deleted MediaWiki usernames, related to revdeleted...
CVE-2022-41766
An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x before 1.37.5, and 1.38.x before 1.38.3. Upon an action=rollback operation, the alreadyrolled message can leak a user name when the user has been revision deleted/suppressed...
Design/Logic Flaw
An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x before 1.37.5, and 1.38.x before 1.38.3. Upon an action=rollback operation, the alreadyrolled message can leak a user name when the user has been revision deleted/suppressed...
PT-2023-22167 · Mediawiki +1 · Growthexperiments Extension For Mediawiki +1
Name of the Vulnerable Software and Affected Versions: GrowthExperiments extension for MediaWiki versions through 1.39.3 Description: An issue in the GrowthExperiments extension for MediaWiki allows attackers to see edits for which the username has been hidden, due to a lack of check for rev...
mediawiki -- multiple vulnerabilities
Mediawiki reports: T316304, CVE-2022-41767 SECURITY: reassignEdits doesn't update results in an IP range check on Special:Contributions.. T309894, CVE-2022-41765 SECURITY: HTMLUserTextField exposes existence of hidden users. T307278, CVE-2022-41766 SECURITY: On action=rollback the message...
MGASA-2016-0305 Updated mediawiki packages fix security vulnerability
Check read permission when loading page content in ApiParse CVE-2016-6331 Make blocks log users out if $wgBlockDisablesLogin is true CVE-2016-6332 Make $wgBlockDisablesLogin also restrict logged in permissions CVE-2016-6332 Require login to preview user CSS pages CVE-2016-6333 Escape '' in inline...