Lucene search
Veracode Vulnerability DatabaseVERACODE:28640HistoryDec 19, 2020 - 1:34 a.m.
Information Disclosure
2020-12-1901:34:43
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
19
mediawiki
information disclosure
insecure handling
hidden status
software
EPSS
0.002
Percentile
59.9%
MediaWiki is vulnerable to information disclosure. Unprivileged users are able to obtain confidential information on the hidden status due to an insecure handling of missing hidden users.
References
lists.debian.org/debian-lts-announce/2020/12/msg00034.html
lists.fedoraproject.org/archives/list/[email protected]/message/STT5Z4A3BCXVH3WIPICWU2FP4IPIMUPC/
lists.wikimedia.org/pipermail/mediawiki-announce/2020-December/000268.html
phabricator.wikimedia.org/T120883
security-tracker.debian.org/tracker/CVE-2020-35480
www.debian.org/security/2020/dsa-4816
Related
prion
prion
Code injection
2020-12-18 08:15:00
redhatcve
redhatcve
CVE-2020-35480
2020-12-18 17:40:37
cvelist
cvelist
CVE-2020-35480
2020-12-18 07:40:38
nvd
nvd
CVE-2020-35480
2020-12-18 08:15:15
debiancve
debiancve
CVE-2020-35480
2020-12-18 08:15:15
cve
cve
CVE-2020-35480
2020-12-18 08:15:15
osv
osv
BIT-mediawiki-2020-35480
2024-03-06 11:13:20
CVE-2020-35480
2020-12-18 08:15:15
mediawiki - security update
2020-12-18 00:00:00
ubuntucve
ubuntucve
CVE-2020-35480
2020-12-18 00:00:00
debian
debian
[SECURITY] [DLA 2504-1] mediawiki security update
2020-12-23 01:38:47
[SECURITY] [DSA 4816-1] mediawiki security update
2020-12-18 09:46:46
nessus
nessus
Debian DSA-4816-1 : mediawiki - security update
2020-12-21 00:00:00
Debian DLA-2504-1 : mediawiki security update
2020-12-23 00:00:00
Fedora 33 : mediawiki (2020-0be2d40e13)
2020-12-28 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-4816-1)
2020-12-19 00:00:00
Debian: Security Advisory (DLA-2504-1)
2020-12-23 00:00:00
Mageia: Security Advisory (MGASA-2021-0086)
2022-01-28 00:00:00
mageia
mageia
Updated mediawiki packages fix security vulnerability
2021-02-19 13:27:54
altlinux
altlinux
Security fix for the ALT Linux 9 package mediawiki version 1.35.1-alt1
2020-12-30 00:00:00
archlinux
archlinux
[ASA-202101-22] mediawiki: multiple issues
2021-01-12 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: mediawiki-1.35.1-1.fc33
2020-12-27 01:41:09