Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistRedhatCVELIST:CVE-2011-4361
HistoryJan 08, 2012 - 11:00 a.m.

CVE-2011-4361

2012-01-0811:00:00
redhat
www.cve.org

6 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.8%

JSON

MediaWiki before 1.17.1 does not check for read permission before handling action=ajax requests, which allows remote attackers to obtain sensitive information by (1) leveraging the SpecialUpload::ajaxGetExistsWarning function, or by (2) leveraging an extension, as demonstrated by the CategoryTree, ExtTab, and InlineEditor extensions.

Related

cve 1
debiancve 1
prion 1
nvd 1
ubuntucve 1
nessus 1
securityvulns 2
openvas 2
osv 1
debian 1
cve
cve
CVE-2011-4361
2012-01-08 11:55:19
debiancve
debiancve
CVE-2011-4361
2012-01-08 11:55:19
prion
prion
Design/Logic Flaw
2012-01-08 11:55:00
nvd
nvd
CVE-2011-4361
2012-01-08 11:55:19
ubuntucve
ubuntucve
CVE-2011-4361
2012-01-08 00:00:00
nessus
nessus
Debian DSA-2366-1 : mediawiki - multiple vulnerabilities
2012-01-12 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2366-1] mediawiki security update
2011-12-26 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2011-12-26 00:00:00
openvas
openvas
Debian Security Advisory DSA 2366-1 (mediawiki)
2012-02-11 00:00:00
Debian: Security Advisory (DSA-2366-1)
2012-02-11 00:00:00
osv
osv
mediawiki - multiple
2011-12-18 00:00:00
debian
debian
[SECURITY] [DSA 2366-1] mediawiki security update
2011-12-19 17:31:48

6 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.8%

JSON
Related for CVELIST:CVE-2011-4361
cve1debiancve1prion1nvd1ubuntucve1nessus1securityvulns2openvas2osv1debian1