Wikimedia Foundation AbuseFilter Vulnerability in AuthManager.php Prior to 1.43.2 and 1.44.0

Vulnerability

A vulnerability exists in the Wikimedia Foundation AbuseFilter extension, specifically in the AuthManager.php file. This issue affects AbuseFilter versions from commit fe0b1cb9e9691faf4d8d9bd80646589f6ec37615 prior to 1.43.2 and version 1.44.0.

Impact

Exploitation of this vulnerability could lead to unauthorized access or improper authentication management, allowing users to bypass intended access controls or authentication mechanisms.

Added: Feb 2, 2026, 11:47 PM

Updated: Feb 2, 2026, 11:47 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

0.0

exploitability

7.6

remediation

0.0

relevance

2.6

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

0.0

exploitability

7.6

remediation

0.0

relevance

2.6

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Wikimedia Foundation AbuseFilter Vulnerability in AuthManager.php Prior to 1.43.2 and 1.44.0

Vulnerability

Impact

Affected Products

Wikimedia Foundation AbuseFilter

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating