CVE-2008-5687
N/A
N/A
Summary
MediaWiki 1.11, and other versions before 1.13.3, does not properly protect against the download of backups of deleted images, which might allow remote attackers to obtain sensitive information via requests for files in images/deleted/.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://www.redhat.com/archives/fedora-package-announce/2008-December/msg01309.html
- http://lists.wikimedia.org/pipermail/mediawiki-announce/2008-December/000080.html
- https://www.redhat.com/archives/fedora-package-announce/2008-December/msg01256.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47678
- http://secunia.com/advisories/33349
References
- https://www.redhat.com/archives/fedora-package-announce/2008-December/msg01309.html
- http://lists.wikimedia.org/pipermail/mediawiki-announce/2008-December/000080.html
- https://www.redhat.com/archives/fedora-package-announce/2008-December/msg01256.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47678
- http://secunia.com/advisories/33349
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.