CVE-2021-31552 – An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It inco …

22 April 2021

Vuln ID: CVE-2021-31552

Published: 2021-04-22 03:15:08Z

Description: An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It incorrectly executed certain rules related to blocking accounts after account creation. Such rules would allow for user accounts to be created while blocking only the IP address used to create an account (and not the user account itself). Such rules could also be used by a nefarious, unprivileged user to catalog and enumerate any number of IP addresses related to these account creations.

Source: NVD.NIST.GOV

Date:

22 April 2021

Categorie(s):

NVD

Tag(s):

NVD

Action needed amid escalating ransomware attacks, record-high payments25 April 2024
Ransomware triggers cyberinsurance claims increase25 April 2024
SSH Backdoor from Compromised XZ Utils Library25 April 2024
“Junk gun” ransomware: the cheap new threat to small businesses25 April 2024
CISA to deploy automated vulnerability warning program by year end25 April 2024