Lucene search
Ubuntu.comUB:CVE-2010-1150HistoryApr 20, 2010 - 12:00 a.m.
CVE-2010-1150
2010-04-2000:00:00
ubuntu.com
ubuntu.com
13
CVSS2
6
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
EPSS
0.004
Percentile
72.2%
MediaWiki before 1.15.3, and 1.6.x before 1.16.0beta2, does not properly
handle a correctly authenticated but unintended login attempt, which makes
it easier for remote authenticated users to conduct phishing attacks by
arranging for a victim to login to the attacker’s account and then execute
a crafted user script, related to a “login CSRF” issue.
Bugs
Related
debian
debian
nessus
nessus
FreeBSD : mediawiki -- authenticated CSRF vulnerability (694da5b4-5877-11df-8d80-0015587e2cc1)
2010-05-07 00:00:00
Debian DSA-2041-1 : mediawiki - Cross-Site Request Forgery
2010-05-05 00:00:00
openvas
openvas
MediaWiki < 1.15.3 CSRF Vulnerability
2010-04-12 00:00:00
MediaWiki < 1.15.3, 1.16.x < 1.16.0beta2 'Login' CSRF Vulnerability
2010-04-29 00:00:00
Debian: Security Advisory (DSA-2041-1)
2023-03-08 00:00:00
securityvulns
securityvulns
prion
prion
Cross site request forgery (csrf)
2010-04-20 15:30:00
cve
cve
CVE-2010-1150
2010-04-20 15:30:00
debiancve
debiancve
CVE-2010-1150
2010-04-20 15:30:00
freebsd
freebsd
mediawiki -- authenticated CSRF vulnerability
2010-04-07 00:00:00
cvelist
cvelist
CVE-2010-1150
2010-04-20 15:00:00
nvd
nvd
CVE-2010-1150
2010-04-20 15:30:00
CVSS2
6
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
EPSS
0.004
Percentile
72.2%
Related for UB:CVE-2010-1150