CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

OSV•added 2025/06/18 2:57 p.m.•2 views

BIT-MEDIAWIKI-2024-40597

An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. It can expose suppressed information for log events. The logdeleted attribute is not respected...

7.5CVSS7.4AI score0.00382EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 7:31 a.m.•5 views

CVE-2024-40596

An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. The Special:Investigate feature can expose suppressed information for log events. TimelineService does not support properly suppressing...

4.3CVSS6.7AI score0.00145EPSS

Exploits0

OSV•added 2024/07/10 7:26 a.m.•13 views

BIT-MEDIAWIKI-2024-40596

4.3CVSS4.5AI score0.00145EPSS

Exploits0References2

OSV•added 2024/07/10 7:26 a.m.•14 views

BIT-MEDIAWIKI-2024-40598

An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. The API can expose suppressed information for log events. The logdeleted attribute is not applied to entries...

4.3CVSS4.4AI score0.00145EPSS

Exploits0References2

OSV•added 2024/07/07 12:15 a.m.•14 views

CVE-2024-40596

4.3CVSS6.6AI score

Exploits0References1

Cvelist•added 2024/07/06 12:0 a.m.•21 views

CVE-2024-40598

An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. The API can expose suppressed information for log events. The logdeleted attribute is not applied to entries...

0.00145EPSS

Exploits0References1

Vulnrichment•added 2024/07/06 12:0 a.m.•19 views

CVE-2024-40596

6.7AI score0.00145EPSS

Exploits0References1

Vulnrichment•added 2024/07/06 12:0 a.m.•10 views

CVE-2024-40598

An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. The API can expose suppressed information for log events. The logdeleted attribute is not applied to entries...

6.6AI score0.00145EPSS

Exploits0References1

Cvelist•added 2024/07/06 12:0 a.m.•19 views

CVE-2024-40597

An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. It can expose suppressed information for log events. The logdeleted attribute is not respected...

0.00382EPSS

Exploits0References1

CVE•added 2024/07/06 12:0 a.m.•97 views

CVE-2024-40598

The CVE-2024-40598 issue affects the MediaWiki CheckUser extension (through version 1.42.1). The API can expose suppressed information for log events because the log_deleted attribute is not applied to entries, enabling unintended disclosure of deleted log data. Several sources (Red Hat, CNVD, OS...

4.3CVSS6.9AI score0.00145EPSS

Exploits0References1Affected Software1

CVE•added 2024/07/06 12:0 a.m.•61 views

CVE-2024-40596

CVE-2024-40596 affects MediaWiki’s CheckUser extension through version 1.42.1. The vulnerability arises in the Special:Investigate feature, which can expose suppressed information for log events because the TimelineService does not properly suppress it. Affected component: CheckUser extension (Me...

4.3CVSS6.9AI score0.00145EPSS

Exploits0References1Affected Software1

Cvelist•added 2024/07/06 12:0 a.m.•18 views

CVE-2024-40596

0.00145EPSS

Exploits0References1

Positive Technologies•added 2024/07/06 12:0 a.m.•3 views

PT-2024-28934 · Mediawiki · Mediawiki Checkuser Extension

Name of the Vulnerable Software and Affected Versions: MediaWiki CheckUser extension versions through 1.42.1 Description: An issue was discovered in the CheckUser extension for MediaWiki. The API can expose suppressed information for log events, as the log deleted attribute is not applied to...

4.3CVSS7AI score0.00145EPSS

Exploits0References10

Vulnrichment•added 2024/07/06 12:0 a.m.•13 views

CVE-2024-40597

An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. It can expose suppressed information for log events. The logdeleted attribute is not respected...

6.7AI score0.00382EPSS

Exploits0References1

OSV•added 2024/03/06 11:9 a.m.•8 views

BIT-MEDIAWIKI-2021-42049

An issue was discovered in the Translate extension in MediaWiki through 1.36.2. Oversighters cannot undo revisions or oversight on pages where they suppressed information such as PII. This allows oversighters to whitewash revisions...

6.5CVSS6.3AI score0.00332EPSS

Exploits0References3

NVD•added 2022/09/29 3:15 a.m.•15 views

CVE-2021-42049

6.5CVSS0.00332EPSS

Exploits0References2

Positive Technologies•added 2021/10/06 12:0 a.m.•2 views

PT-2021-23488 · Mediawiki +1 · Translate Extension +2

Name of the Vulnerable Software and Affected Versions: MediaWiki versions through 1.36.2 Description: An issue in the Translate extension allows oversighters to whitewash revisions by preventing them from undoing revisions or oversight on pages where they suppressed information, such as personall...

8.8CVSS6AI score0.01215EPSS

Exploits5References44