Description
An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. The page_recent_contributors leaked the existence of certain deleted MediaWiki usernames, related to rev_deleted.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Smart Image II Cross-Site Scripting (0.2)
WordPress Plugin CMS Tree Page View Cross-Site Scripting (1.2.31)
MySQL Other Vulnerability (CVE-2002-1375)
WordPress Plugin FreshMail For WordPress Multiple SQL Injection Vulnerabilities (1.5.8)
IBM RTC Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-29701)