Description
An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It incorrectly logged sensitive suppression deletions, which should not have been visible to users with access to view AbuseFilter log data.
Remediation
References
Related Vulnerabilities
WordPress Plugin Content Control-User Access Restriction Cross-Site Scripting (1.1.9)
Undertow Insertion of Sensitive Information into Log File Vulnerability (CVE-2019-10212)
Joomla! Core 3.x.x Multiple Vulnerabilities (3.4.4 - 3.6.3)
LimeSurvey CVE-2008-2570 Vulnerability (CVE-2008-2570)
WordPress Plugin YITH WooCommerce Multi-step Checkout Security Bypass (1.7.4)