Description
An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. Its AbuseFilterCheckMatch API reveals suppressed edits and usernames to unprivileged users through the iteration of crafted AbuseFilter rules.
Remediation
References
Related Vulnerabilities
Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2023-45802)
WordPress 4.9.x Denial of Service Vulnerability (4.9 - 4.9.4)
Plone CMS Improper Input Validation Vulnerability (CVE-2011-4462)
WordPress Plugin WP Coder-add custom html, css and js code Cross-Site Request Forgery (2.5.1)