CVE-2025-53499
Unauthorized Inspection of Protected Variables in AbuseFilter
We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Unauthorized Inspection of Protected Variables in AbuseFilter
Missing Authorization vulnerability in Wikimedia Foundation Mediawiki - AbuseFilter Extension allows Unauthorized Access.This issue affects Mediawiki - AbuseFilter Extension: from 1.39.X before 1.39.13, from 1.42.X before 1.42.7, from 1.43.X before 1.43.2.
Reserved 2025-06-30 | Published 2025-07-07 | Updated 2025-07-07 | Assigner wikimedia-foundationCWE-862: Missing Authorization
Dreamy_Jazz
phabricator.wikimedia.org/T397196
gerrit.wikimedia.org/...iki/extensions/AbuseFilter/+/1166045
Support options
