Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2012-5391
HistoryJun 02, 2014 - 3:55 p.m.

CVE-2012-5391

2014-06-0215:55:08
mitre
web.nvd.nist.gov
31
cve-2012-5391
session fixation
mediawiki
security vulnerability
remote attackers
web sessions
session hijacking

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.5

Confidence

Low

EPSS

0.012

Percentile

85.2%

JSON

Session fixation vulnerability in Special:UserLogin in MediaWiki before 1.18.6, 1.19.x before 1.19.3, and 1.20.x before 1.20.1 allows remote attackers to hijack web sessions via the session_id.

Affected configurations

Nvd
Node
mediawikimediawikiRange1.18.5
OR
mediawikimediawikiMatch1.18
OR
mediawikimediawikiMatch1.18beta_1
OR
mediawikimediawikiMatch1.18.0
OR
mediawikimediawikiMatch1.18.0rc1
OR
mediawikimediawikiMatch1.18.1
OR
mediawikimediawikiMatch1.18.2
OR
mediawikimediawikiMatch1.18.3
OR
mediawikimediawikiMatch1.18.4
Node
mediawikimediawikiMatch1.19
OR
mediawikimediawikiMatch1.19beta_1
OR
mediawikimediawikiMatch1.19beta_2
OR
mediawikimediawikiMatch1.19.1
OR
mediawikimediawikiMatch1.19.2
Node
mediawikimediawikiMatch1.20
VendorProductVersionCPE
mediawikimediawiki*cpe:2.3:a:mediawiki:mediawiki:*:*:*:*:*:*:*:*
mediawikimediawiki1.18cpe:2.3:a:mediawiki:mediawiki:1.18:*:*:*:*:*:*:*
mediawikimediawiki1.18cpe:2.3:a:mediawiki:mediawiki:1.18:beta_1:*:*:*:*:*:*
mediawikimediawiki1.18.0cpe:2.3:a:mediawiki:mediawiki:1.18.0:*:*:*:*:*:*:*
mediawikimediawiki1.18.0cpe:2.3:a:mediawiki:mediawiki:1.18.0:rc1:*:*:*:*:*:*
mediawikimediawiki1.18.1cpe:2.3:a:mediawiki:mediawiki:1.18.1:*:*:*:*:*:*:*
mediawikimediawiki1.18.2cpe:2.3:a:mediawiki:mediawiki:1.18.2:*:*:*:*:*:*:*
mediawikimediawiki1.18.3cpe:2.3:a:mediawiki:mediawiki:1.18.3:*:*:*:*:*:*:*
mediawikimediawiki1.18.4cpe:2.3:a:mediawiki:mediawiki:1.18.4:*:*:*:*:*:*:*
mediawikimediawiki1.19cpe:2.3:a:mediawiki:mediawiki:1.19:*:*:*:*:*:*:*
Rows per page:
1-10 of 151

Related

nessus 4
openvas 6
cvelist 1
debiancve 1
ubuntucve 1
fedora 3
nvd 1
seebug 1
prion 1
nessus
nessus
Fedora 17 : mediawiki-1.19.4-2.fc17 (2013-3227)
2013-03-22 00:00:00
Fedora 18 : mediawiki119-1.19.3-3.fc18 (2013-2090)
2013-02-19 00:00:00
Fedora 18 : mediawiki-1.19.4-2.fc18 (2013-3265)
2013-03-22 00:00:00
openvas
openvas
Fedora Update for mediawiki119 FEDORA-2013-2090
2013-02-22 00:00:00
Fedora Update for mediawiki FEDORA-2013-3265
2013-03-22 00:00:00
Fedora Update for mediawiki FEDORA-2013-3227
2013-03-22 00:00:00
cvelist
cvelist
CVE-2012-5391
2014-06-02 15:00:00
debiancve
debiancve
CVE-2012-5391
2014-06-02 15:55:08
ubuntucve
ubuntucve
CVE-2012-5391
2014-06-02 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: mediawiki119-1.19.3-3.fc18
2013-02-19 01:34:22
[SECURITY] Fedora 17 Update: mediawiki-1.19.4-2.fc17
2013-03-22 00:45:33
[SECURITY] Fedora 18 Update: mediawiki-1.19.4-2.fc18
2013-03-22 00:47:24
nvd
nvd
CVE-2012-5391
2014-06-02 15:55:08
seebug
seebug
MediaWiki 会话固定漏洞(CVE-2012-5391)
2013-02-22 00:00:00
prion
prion
Session fixation
2014-06-02 15:55:00

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.5

Confidence

Low

EPSS

0.012

Percentile

85.2%

JSON
Related for CVE-2012-5391
nessus4openvas6cvelist1debiancve1ubuntucve1fedora3nvd1seebug1prion1