Information Disclosure

2019-10-3004:31:50

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.001 Low

EPSS

Percentile

38.7%

JSON

mediawiki/abuse-filter is vulnerable to information disclosure. An unprivileged user is able to view hidden and restricted AbuseFilter filters that can contain confidential information.

CPENameOperatorVersion
mediawiki/abuse-filtereqdev-REL1_21
mediawiki/abuse-filtereqdev-REL1_25
mediawiki/abuse-filtereqdev-REL1_26
mediawiki/abuse-filtereqdev-REL1_28
mediawiki/abuse-filtereqdev-REL1_32
mediawiki/abuse-filtereqdev-REL1_24
mediawiki/abuse-filtereqdev-REL1_27
mediawiki/abuse-filtereqdev-REL1_31
mediawiki/abuse-filtereqdev-REL1_22
mediawiki/abuse-filtereqdev-REL1_23

Name	Operator	Version
mediawiki/abuse-filter	eq	dev-REL1_21
mediawiki/abuse-filter	eq	dev-REL1_25
mediawiki/abuse-filter	eq	dev-REL1_26
mediawiki/abuse-filter	eq	dev-REL1_28
mediawiki/abuse-filter	eq	dev-REL1_32
mediawiki/abuse-filter	eq	dev-REL1_24
mediawiki/abuse-filter	eq	dev-REL1_27
mediawiki/abuse-filter	eq	dev-REL1_31
mediawiki/abuse-filter	eq	dev-REL1_22
mediawiki/abuse-filter	eq	dev-REL1_23