CVE-2020-25869
CVE-2020-25869
An information leak was discovered in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4. Handling of actor ID does not necessarily use the correct database or correct wiki.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RTTPZ7XMDS66I442OLLHXBDNP2LCBJU6/https://lists.wikimedia.org/pipermail/mediawiki-l/2020-September/048480.htmlhttps://lists.wikimedia.org/pipermail/mediawiki-l/2020-September/048488.htmlhttps://phabricator.wikimedia.org/T260485