Description
An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. The page_recent_contributors leaked the existence of certain deleted MediaWiki usernames, related to rev_deleted.
Remediation
References
Related Vulnerabilities
MySQL CVE-2020-14697 Vulnerability (CVE-2020-14697)
Internet Information Services Other Vulnerability (CVE-2000-0413)
Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-5545)
WordPress Plugin WordPress File Upload Directory Traversal (4.12.2)
WordPress Plugin Browser Screenshots Cross-Site Scripting (1.7.5)