Description
An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. Its AbuseFilterCheckMatch API reveals suppressed edits and usernames to unprivileged users through the iteration of crafted AbuseFilter rules.
Remediation
References
Related Vulnerabilities
Squid Improper Input Validation Vulnerability (CVE-2021-31808)
WordPress Plugin ChikunCount Arbitrary File Upload (1.3)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (5.1.4)
WordPress Plugin One page checkout and layouts for woocommerce Unspecified Vulnerability (2.7)