Mediawiki : Security Vulnerabilities, CVEs, Published In 2014 (Information Leak) CVSS score >= 3
MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to obtain information about deleted page via the (1) log API, (2) enhanced RecentChanges, and (3) user watchlists.
Max CVSS
5.0
EPSS Score
0.38%
Published
2014-05-12
Updated
2014-05-13
maintenance/mwdoc-filter.php in MediaWiki before 1.20.3 allows remote attackers to read arbitrary files via unspecified vectors.
Max CVSS
5.0
EPSS Score
0.38%
Published
2014-06-02
Updated
2017-08-29
2 vulnerabilities found