exploitDog

GHSA-ccr5-c8jw-5gcr

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.9

Описание

The Scribunto extension for MediaWiki allows remote attackers to obtain the rollback token and possibly other sensitive information via a crafted module, related to unstripping special page HTML.

The Scribunto extension for MediaWiki allows remote attackers to obtain the rollback token and possibly other sensitive information via a crafted module, related to unstripping special page HTML.

Ссылки

EPSS

Процентиль: 68%

0.00568

Низкий

5.9 Medium

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2014-9481

CVSS3: 5.9

nvd

около 6 лет назад

The Scribunto extension for MediaWiki allows remote attackers to obtain the rollback token and possibly other sensitive information via a crafted module, related to unstripping special page HTML.

EPSS

Процентиль: 68%

0.00568

Низкий

5.9 Medium

CVSS3

CVE ID

Дефекты

CWE-200