Security Advisory

CVE-2024-47913

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-04 00:00:00
Last updated 2024-12-06 21:07:18
Assigner mitre
State PUBLISHED

Description

An issue was discovered in the AbuseFilter extension for MediaWiki before 1.39.9, 1.40.x and 1.41.x before 1.41.3, and 1.42.x before 1.42.2. An API caller can match a filter condition against AbuseFilter logs even if the caller is not authorized to view the log details for the filter.