Search Results (Refine Search)
- CPE Product Version: cpe:/a:mediawiki:mediawiki:1.12.2
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2008-5688 |
MediaWiki 1.8.1, and other versions before 1.13.3, when the wgShowExceptionDetails variable is enabled, sometimes provides the full installation path in a debugging message, which might allow remote attackers to obtain sensitive information via unspecified requests that trigger an uncaught exception. Published: December 19, 2008; 12:30:03 PM -0500 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2008-5687 |
MediaWiki 1.11, and other versions before 1.13.3, does not properly protect against the download of backups of deleted images, which might allow remote attackers to obtain sensitive information via requests for files in images/deleted/. Published: December 19, 2008; 12:30:03 PM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |