Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2019-15150 | 1 Schine.games | 1 Mw-oauth2client | 2023-03-07 | 6.8 MEDIUM | 8.8 HIGH |
In the OAuth2 Client extension before 0.4 for MediaWiki, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function. |