CVE-2021-31553

by Fred · 21/04/2021

An issue was discovered in the CheckUser extension for MediaWiki through 1.35.2. MediaWiki usernames with trailing whitespace could be stored in the cu_log database table such that denial of service occurred for certain CheckUser extension pages and functionality. For example, the attacker could turn off Special:CheckUserLog and thus interfere with usage tracking.

Date published : 2021-04-21

https://gerrit.wikimedia.org/r/c/mediawiki/extensions/CheckUser/+/666963

https://gerrit.wikimedia.org/r/c/mediawiki/extensions/CheckUser/+/666964

CVE-2021-31553

Similar

Recent Posts

Categories

CVE-2021-31553

Share this:

Similar

Recent Posts

Categories

Tags