An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. Its AbuseFilterCheckMatch API reveals suppressed edits and usernames to unprivileged users through the iteration of crafted AbuseFilter rules.
Advisories
Source ID Title
EUVD EUVD EUVD-2021-18444 An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. Its AbuseFilterCheckMatch API reveals suppressed edits and usernames to unprivileged users through the iteration of crafted AbuseFilter rules.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-03T23:03:33.474Z

Reserved: 2021-04-22T00:00:00

Link: CVE-2021-31547

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-04-22T03:15:08.000

Modified: 2024-11-21T06:05:53.273

Link: CVE-2021-31547

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.