{"id": "8611.PRM", "type": "nessus", "bulletinFamily": "scanner", "title": "MediaWiki < 1.19.23 / 1.22.15 / 1.23.8 / 1.24.1 Multiple Vulnerabilities", "description": "In versions older than 1.24.1, 1.22.15 or 1.19.23 or 1.23.8, MediaWiki contains a flaw in API handling which allows an attacker to bypass authentication. This issue occurs when a website includes an allowed domain as part of its name in '$wgCrossSiteAJAXdomains' in API calls. An attacker can exploit this issue to bypass CORS restrictions. Older versions of MediaWiki are also prone to a cross-site scripting vulnerability because 'thumb.php' script fails to properly sanitize user-supplied input when handling wikitext messages before returning it to the users.", "published": "2014-12-29T00:00:00", "modified": "2019-03-06T00:00:00", "cvss": {"score": 6.4, "vector": "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N"}, "cvss2": {}, "cvss3": {"score": 6.5, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}, "href": "https://www.tenable.com/plugins/nnm/8611", "reporter": "Tenable", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1175828", "http://www.mediawiki.org/wiki/MediaWiki", "https://phabricator.wikimedia.org/T77028", "http://www.nessus.org/u?ca4fdcfe"], "cvelist": [], "immutableFields": [], "lastseen": "2021-08-19T12:47:22", "viewCount": 0, "enchantments": {"dependencies": {}, "score": {"value": 2.5, "vector": "NONE"}, "backreferences": {}, "exploitation": null, "vulnersScore": 2.5}, "pluginID": "8611", "sourceData": "Binary data 8611.prm", "naslFamily": "CGI", "cpe": ["cpe:2.3:a:mediawiki:mediawiki:*:*:*:*:*:*:*:*"], "solution": "Upgrade to MediaWiki version 1.24.1. Alternatively, versions 1.19.23, 1.22.15, and 1.23.8 or later are patched for these vulnerabilities.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2014-12-24T00:00:00", "vulnerabilityPublicationDate": "2014-12-17T00:00:00", "exploitableWith": [], "_state": {"dependencies": 1646264407}}

{}