CVE-2014-1686

CVE-2014-1686

EPSS 2.1%

MediaWiki 1.18.0 allows remote attackers to obtain the installation path via vectors related to thumbnail creation.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://seclists.org/fulldisclosure/2014/Mar/102 https://exchange.xforce.ibmcloud.com/vulnerabilities/91847 https://packetstormsecurity.com/files/125682 http://www.securityfocus.com/bid/66141