CNNVD-202602-523 Information
Feb 03, 2026
cve
CNNVD ID
CNNVD-202602-523
Related CVE
- CNNVD Published: 2026-02-03
Description (Chinese)
Wikimedia CheckUser是Wikimedia基金会的一个打击破坏行为的高级调查工具。 Wikimedia CheckUser存在安全漏洞,该漏洞源于未检查当前操作用户是否实际拥有查看这些封禁日志条目的权限。
Description (English)
Wikimedia CheckUser is a high-level investigative tool of the Wikimedia Foundation to combat sabotage. Wikimedia CheckUser has a security loophole, which stems from the failure to check whether the current operator actually has the right to view these banned log entries.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
维基媒体
Published
2026-02-03
Last Modified
2026-02-24
References
https://phabricator.wikimedia.org/T397396
Patch
https://www.mediawiki.org/wiki/Extension:CheckUser
Share on: