Unspecified vulnerability in MediaWiki 1.11 before 1.11.2 allows remote attackers to obtain sensitive "cross-site" information via the callback parameter in an API call for JavaScript Object Notation (JSON) formatted results.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2008-03-13 07:44
Updated : 2017-08-07 18:30
NVD link : CVE-2008-1318
Mitre link : CVE-2008-1318
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
mediawiki
- mediawiki