MediaWiki before 1.19.4 and 1.20.x before 1.20.3 contains an error in the api.php script which allows remote attackers to obtain sensitive information.
CPE | Name | Operator | Version |
---|---|---|---|
debian_linux | eq | 9.0 | |
debian_linux | eq | 10.0 | |
fedora | eq | 18 | |
mediawiki | lt | 1.19.4 | |
mediawiki | ge | 1.20.0 | |
mediawiki | lt | 1.20.3 | |
enterprise_linux | eq | 6.0 |