CVE-2024-40597

An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. It can expose suppressed information for log events. (The log_deleted attribute is not respected.)

We have discovered 14,225 live websites that are affected by CVE-2024-40597.

Test my site



Affected Software

Product  MediaWiki
Category Wikis
Vulnerable Domains14,225 live websites (78.36% of MediaWiki install base)
Vulnerable Versions
  • from 0 through 1.42.1
Vulnerable Versions Count228 versions ( 97.44% of all versions)



Details

  • Published - Jul 6, 2024
  • Updated - Aug 2, 2024

CVE-2024-40597 usage by Country

United States5,967 websites


Germany2,804 websites
France972 websites
Russia650 websites
Netherlands411 websites
Singapore327 websites
GB299 websites
Switzerland191 websites
Canada187 websites

CVE-2024-40597 usage by TLD

.com4,195 websites
.org2,965 websites
.de1,279 websites
.net1,038 websites
.ru551 websites
.info327 websites
.nl278 websites
.fr255 websites
.eu195 websites
.edu148 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2024-40597

Top websites that are affected by CVE-2024-40597. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
************.org Singapore***
****************.de Germany***
*******.com United States*,***
*************.org United States*,***
****.*******.org United States*,***
****.*************.org United States*,***
****.******.org United States*,***
****.******.org United States*,***
*******.com Singapore*,***
****.******.org United States*,***
See full domain list

FAQ

A total of 14,225 websites have been identified as vulnerable to CVE-2024-40597, discovered through global website indexing conducted by WebTechSurvey.
MediaWiki is susceptible to CVE-2024-40597 vulnerability.
MediaWiki versions before, and including, 1.42.1 are vulnerable to CVE-2024-40597.