CNNVD-202507-765 Information
CNNVD ID
CNNVD-202507-765
Related CVE
- CNNVD Published: 2025-07-07
Description (Chinese)
Wikimedia Mediawiki - AbuseFilter Extension是Wikimedia基金会的一个滥用过滤器。 Wikimedia Mediawiki - AbuseFilter Extension 1.39.13之前版本、1.42.7之前版本和1.43.2之前版本存在安全漏洞,该漏洞源于日志记录不足,可能导致数据泄露攻击。
Description (English)
Wikimedia Mediawiki - AbuseFilter Extension is an abusive filter for Wikimedia Foundation. Wikimedia Mediawiki - AbuseFilter Extension 1.39.13, 1.42.7 and 1.4.3.2 had a security loophole, which stemmed from inadequate log records and could lead to a data leak attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
维基媒体
Published
2025-07-07
Last Modified
2026-02-24
References
https://gerrit.wikimedia.org/r/c/mediawiki/extensions/AbuseFilter/+/1166844 https://phabricator.wikimedia.org/T397221 https://access.redhat.com/security/cve/cve-2025-53498 https://nvd.nist.gov/vuln/detail/CVE-2025-53498
Patch
https://www.mediawiki.org/wiki/Extension:AbuseFilter
Share on: