Incorrect Access Control in MediaWiki through 1.32.1: Exposed Suppressed Username or Log in Special:EditTags

Incorrect Access Control in MediaWiki through 1.32.1: Exposed Suppressed Username or Log in Special:EditTags

CVE-2019-12469 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

MediaWiki through 1.32.1 has Incorrect Access Control. Suppressed username or log in Special:EditTags are exposed. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.

Learn more about our User Device Pen Test.