CVE-2018-13258

All Frameworks › MediaWiki › CWE-Other › CVE-2018-13258

CVE-2018-13258

State: PUBLISHED · Published: 2018-10-04 · Updated: 2024-09-16 · Assigner: debian

Description

Mediawiki 1.31 before 1.31.1 misses .htaccess files in the provided tarball used to protect some directories that shouldn't be web accessible.

CWE

(none)

Affected

mediawiki / mediawiki — v=1.31 before 1.31.1 [affected]

CVSS

(none)

References

https://lists.wikimedia.org/pipermail/wikitech-l/2018-September/090849.html mailing-list, x_refsource_MLIST
http://www.securitytracker.com/id/1041695 vdb-entry, x_refsource_SECTRACK
https://phabricator.wikimedia.org/T199029 x_refsource_CONFIRM

Source

cvelistV5-main/cves/2018/13xxx/CVE-2018-13258.json