Lucene search

K

RedhatCVELIST:CVE-2012-1578

HistorySep 09, 2012 - 9:00 p.m.

CVE-2012-1578

2012-09-0921:00:00

redhat

www.cve.org

1

7 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.0%

Multiple cross-site request forgery (CSRF) vulnerabilities in MediaWiki 1.17.x before 1.17.3 and 1.18.x before 1.18.2 allow remote attackers to hijack the authentication of users with the block permission for requests that (1) block a user via a request to the Block module or (2) unblock a user via a request to the Unblock module.

References

lists.wikimedia.org/pipermail/mediawiki-announce/2012-March/000109.html

lists.wikimedia.org/pipermail/mediawiki-announce/2012-March/000110.html

osvdb.org/80361

secunia.com/advisories/48504

www.openwall.com/lists/oss-security/2012/03/22/9

www.openwall.com/lists/oss-security/2012/03/24/1

www.securityfocus.com/bid/52689

bugzilla.wikimedia.org/show_bug.cgi?id=34212

exchange.xforce.ibmcloud.com/vulnerabilities/78911

7 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.0%

Related for CVELIST:CVE-2012-1578

prion1 ubuntucve1 nvd1 debiancve1 cve1 nessus2 gentoo1 openvas2