VOOZH about

URL: https://github.com/advisories/GHSA-733q-m38x-q7cc

⇱ Wikimedia MediaWik exposed suppressed log in RevisionDelete page · CVE-2019-12470 · GitHub Advisory Database · GitHub

Skip to content

Wikimedia MediaWik exposed suppressed log in RevisionDelete page

Moderate severity GitHub Reviewed Published to the GitHub Advisory Database • Updated

Package

mediawiki/core (Composer)

Affected versions

>= 1.27.0, < 1.27.6
>= 1.30.0, < 1.30.2
>= 1.31.0, < 1.31.2
>= 1.32.0, < 1.32.2

Patched versions

1.27.6
1.30.2
1.31.2
1.32.2
Published to the GitHub Advisory Database
Reviewed
Last updated

Severity

Moderate
/ 10

CVSS v3 base metrics

Attack vector
Network
Attack complexity
Low
Privileges required
Low
User interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS score

(69th percentile)

Weaknesses

CVE ID

CVE-2019-12470

GHSA ID

GHSA-733q-m38x-q7cc

Source code

See something to contribute? Suggest improvements for this vulnerability.
You can’t perform that action at this time.