Information disclosure in Wikimedia Foundation Mediawiki

CVE-2026-58036

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Api/ApiQueryAllUsers.Php, includes/Api/ApiQueryUsers.Php, includes/P…

Vulnerability class: Information Disclosure

Affected products

Weakness classification (CWE)

References