CVE-2013-6455

State: PUBLISHED · Published: 2020-01-28 · Updated: 2024-08-06 · Assigner: redhat

Description

The CentralAuth extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to obtain usernames via vectors related to writing the names to the DOM of a page.

CWE

(none)

Affected

Wikimedia Foundation / MediaWiki — v=before 1.19.10 [affected]; v=1.2x before 1.21.4 [affected]; v=1.22.x before 1.22.1 [affected]

CVSS

(none)

References

http://lists.wikimedia.org/pipermail/mediawiki-announce/2014-January/000138.html x_refsource_MISC

Source

cvelistV5-main/cves/2013/6xxx/CVE-2013-6455.json