Security Advisory

CVE-2021-30153

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-15 00:00:00

Last updated 2025-02-06 16:16:20

Assigner mitre

State PUBLISHED

Description

An issue was discovered in the VisualEditor extension in MediaWiki before 1.31.13, and 1.32.x through 1.35.x before 1.35.2. . When using VisualEditor to edit a MediaWiki user page belonging to an existing, but hidden, user, VisualEditor will disclose that the user exists. (It shouldnt because they are hidden.) This is related to ApiVisualEditor.

← Browse all CVEs View on cve.org ↗