Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2013-6455

🗓️ 28 Jan 2020 15:14:15Reported by redhatType 
cve
 cve🔗 web.nvd.nist.gov👁 33 Views

The CentralAuth extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to obtain usernames via vectors related to writing the names to the DOM of a page

Show more
Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
Cvelist		CVE-2013-6455
28 Jan 202014:54
cvelist
Prion		Design/Logic Flaw
28 Jan 202015:15
prion
NVD		CVE-2013-6455
28 Jan 202015:15
nvd
Tenable Nessus		MediaWiki < 1.19.10 / 1.21.4 / 1.22.1 Multiple Vulnerabilities
6 Feb 201400:00
nessus
Nvd
Vulners
Node
mediawikimediawikiRange<1.19.10
OR
mediawikimediawikiRange1.20.01.21.4
OR
mediawikimediawikiRange1.22.01.22.1
[
  {
    "product": "MediaWiki",
    "vendor": "Wikimedia Foundation",
    "versions": [
      {
        "status": "affected",
        "version": "before 1.19.10"
      },
      {
        "status": "affected",
        "version": "1.2x before 1.21.4"
      },
      {
        "status": "affected",
        "version": "1.22.x before 1.22.1"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
28 Jan 2020 15:15Current
5.1Medium risk
Vulners AI Score5.1
CVSS25
CVSS35.3
EPSS0.00154
CWE-200
cve-2013-6455centralauthmediawikivulnerabilityusernamesremote attackersnvd
33
.json
Report