Unrated severityNVD Advisory· Published Jul 2, 2021· Updated Aug 4, 2024
CVE-2021-36127
CVE-2021-36127
Description
An issue was discovered in the CentralAuth extension in MediaWiki through 1.36. The Special:GlobalUserRights page provided search results which, for a suppressed MediaWiki user, were different than for any other user, thus easily disclosing suppressed accounts (which are supposed to be completely hidden).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- MediaWiki/CentralAuthdescription
- Range: <=1.36
- Range: <=1.36
Patches
Vulnerability mechanics
References
2- gerrit.wikimedia.org/r/q/I4e4dbcad61e1d4f6fd8b038bf63d19c69081a8ecmitrex_refsource_MISC
- phabricator.wikimedia.org/T285190mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.