Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-39193

An issue was discovered in the CheckUser extension for MediaWiki through 1.39.x. Various components of this extension can expose information on the performer of edits and logged actions. This information should not allow public viewing: it is supposed to be viewable only by users with suppression rights.

Published

2023-01-20T19:15:15.250

Last Modified

2025-04-03T16:15:23.657

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.3 (MEDIUM)

Weaknesses
  • Type: Primary
    CWE-200
  • Type: Secondary
    CWE-200
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application mediawiki mediawiki 1.39.0 Yes
Application mediawiki mediawiki 1.39.0 Yes
Application mediawiki mediawiki 1.39.0 Yes
Application mediawiki mediawiki 1.39.1 Yes
References