← voltar
CVE-2015-8628

CVE-2015-8628

EPSS 1.4%
The (1) Special:MyPage, (2) Special:MyTalk, (3) Special:MyContributions, (4) Special:MyUploads, and (5) Special:AllMyUploads pages in MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1 allow remote attackers to obtain sensitive user login information via crafted links combined with page view statistics.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-December/000186.htmlhttps://phabricator.wikimedia.org/T109724http://www.openwall.com/lists/oss-security/2015/12/21/8http://www.openwall.com/lists/oss-security/2015/12/23/7