Lucene search
PRIOn knowledge basePRION:CVE-2014-2665HistoryApr 20, 2014 - 1:55 a.m.
Cross site request forgery (csrf)
2014-04-2001:55:00
PRIOn knowledge base
www.prio-n.com
9
includes/specials/SpecialChangePassword.php in MediaWiki before 1.19.14, 1.20.x and 1.21.x before 1.21.8, and 1.22.x before 1.22.5 does not properly handle a correctly authenticated but unintended login attempt, which makes it easier for remote authenticated users to obtain sensitive information by arranging for a victim to login to the attackerβs account, as demonstrated by tracking the victimβs activity, related to a βlogin CSRFβ issue.
Related
nessus
nessus
Mandriva Linux Security Advisory : mediawiki (MDVSA-2014:083)
2014-05-09 00:00:00
Fedora 20 : mediawiki-1.21.8-1.fc20 (2014-4478)
2014-04-09 00:00:00
Fedora 19 : mediawiki-1.21.8-1.fc19 (2014-4511)
2014-04-09 00:00:00
seebug
seebug
MediaWiki 'Special:ChangePassword'θ·¨η«θ―·ζ±δΌͺι ζΌζ΄
2014-04-08 00:00:00
securityvulns
securityvulns
[ MDVSA-2014:083 ] mediawiki
2014-05-10 00:00:00
nvd
nvd
CVE-2014-2665
2014-04-20 01:55:06
mageia
mageia
Updated mediawiki packages fix CVE-2014-2665
2014-04-03 17:29:32
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0157)
2022-01-28 00:00:00
Fedora Update for mediawiki FEDORA-2014-4478
2014-04-10 00:00:00
Fedora Update for mediawiki FEDORA-2014-4511
2014-04-10 00:00:00
ubuntucve
ubuntucve
CVE-2014-2665
2014-04-20 00:00:00
cve
cve
CVE-2014-2665
2014-04-20 01:55:06
cvelist
cvelist
CVE-2014-2665
2014-04-20 01:00:00
debiancve
debiancve
CVE-2014-2665
2014-04-20 01:55:06
fedora
fedora
[SECURITY] Fedora 19 Update: mediawiki-1.21.8-1.fc19
2014-04-09 01:03:53
[SECURITY] Fedora 20 Update: mediawiki-1.21.8-1.fc20
2014-04-09 01:00:28
debian
debian
[SECURITY] [DSA 2891-3] mediawiki regression update
2014-04-04 18:02:59
osv
osv
mediawiki - security update
2014-03-30 00:00:00
gentoo
gentoo
MediaWiki: Multiple vulnerabilities
2015-02-07 00:00:00