Description
An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. The page_recent_contributors leaked the existence of certain deleted MediaWiki usernames, related to rev_deleted.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2019-2749 Vulnerability (CVE-2019-2749)
WordPress Plugin WP Symposium Multiple Vulnerabilities (14.05.02)
PostgreSQL Other Vulnerability (CVE-2005-0245)
Moodle Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2016-9186)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-2266)