Description
An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. The page_recent_contributors leaked the existence of certain deleted MediaWiki usernames, related to rev_deleted.
Remediation
References
Related Vulnerabilities
WordPress Plugin Videos on Admin Dashboard Cross-Site Scripting (1.1.3)
Oracle Database Server CVE-2012-0525 Vulnerability (CVE-2012-0525)
WordPress Plugin Fancy Product Designer-WooCommerce Arbitrary File Upload (4.6.8)
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1509)
Atlassian Jira Improper Authentication Vulnerability (CVE-2021-39119)