CVE-2019-16528

An issue was discovered in the AbuseFilter extension for MediaWiki. includes/special/SpecialAbuseLog.php allows attackers to obtain sensitive information, such as deleted/suppressed usernames and summaries, from AbuseLog revision data. This affects REL1_32 and REL1_33.
Configurations

Configuration 1

cpe:2.3:a:mediawiki:abusefilter:1.32:*:*:*:*:mediawiki:*:*
cpe:2.3:a:mediawiki:abusefilter:1.33:*:*:*:*:mediawiki:*:*

Information

Published : 2020-03-20 09:15

Updated : 2021-07-21 11:39


NVD link : CVE-2019-16528

Mitre link : CVE-2019-16528

Products Affected
No products.
CWE
CWE-532

Insertion of Sensitive Information into Log File