CVE-2024-40597 | CheckUser Extension up to 1.42.1 on MediaWiki Log Entry log_deleted information disclosure

Inserito da Angelo Barbosa | Lug 7, 2024 | CVE

A vulnerability was found in CheckUser Extension up to 1.42.1 on MediaWiki. It has been rated as problematic. This issue affects some unknown processing of the component Log Entry Handler. The manipulation of the argument log_deleted leads to information disclosure.

The identification of this vulnerability is CVE-2024-40597. The attack may be initiated remotely. There is no exploit available.

CVE-2024-40597 | CheckUser Extension up to 1.42.1 on MediaWiki Log Entry log_deleted information disclosure

Post correlati

CVE-2021-34964 | Foxit PDF Editor 11.0.0.49893 Polygon Annotation use after free (ZDI-21-1195)

CVE-2024-2974 | WooCommerce Essential Addons for Elementor Plugin up to 5.9.13 on WordPress information disclosure

CVE-2023-7192 | Linux Kernel Netfilter nf_conntrack_netlink.c ctnetlink_create_conntrack memory leak

CVE-2024-1863 | Sante PACS Server Token Endpoint sql injection