Multiple Security Flaws Found In MediaWiki

Vulnerabilities in MediaWiki could expose user two-factor authentication status and other sensitive log information to attackers.

Security vulnerabilities have been identified in MediaWiki, the open-source software that powers platforms like Wikipedia. One flaw allows an authenticated user to determine if other users have two-factor authentication (2FA) enabled on their accounts. This is due to an issue in how an extension handles group membership visibility. A second vulnerability was also discovered, which permits an unauthenticated attacker to view the titles of log entries that were supposed to be suppressed and hidden from public view. This issue stems from the incorrect handling of these entries within the 'RecentChanges' list, potentially exposing information that administrators intended to keep private.

These vulnerabilities pose a risk to the security and privacy of MediaWiki-based sites. The 2FA visibility issue could allow attackers to specifically target accounts that lack this extra layer of security, making them easier to compromise. Meanwhile, the exposure of suppressed log titles could leak confidential data, such as the names of users involved in a moderation action or the titles of deleted pages, undermining administrative controls. Organizations running their own wikis for internal documentation, knowledge bases, or public-facing content are directly affected.

The discovery of these flaws highlights the ongoing need for diligent maintenance of widely-used open-source platforms. As foundational components of many organizations' infrastructure, they are frequent targets for security researchers and malicious actors alike. Promptly applying security patches released by the maintainers is the most effective way to protect against exploitation and ensure the integrity of the platform and its data.

The vulnerabilities undermine key security and privacy features in MediaWiki. Exposing 2FA status allows attackers to identify and target less-secure accounts, while the log exposure can leak sensitive administrative information. This affects any organization using MediaWiki for internal or public knowledge bases.

Organizations using unpatched MediaWiki instances face an increased risk of account compromise and data leaks. This could lead to unauthorized access to internal knowledge bases, reputational damage if private administrative actions are exposed, and a general erosion of trust in the platform's security.