CVE-2012-1578

NONECVSS 0.0

0.0

Multiple cross-site request forgery (CSRF) vulnerabilities in MediaWiki 1.17.x before 1.17.3 and 1.18.x before 1.18.2 allow remote attackers to hijack the authentication of users with the block permission for requests that (1) block a user via a request to the Block module or (2) unblock a user via a request to the Unblock module.

🔗 References (18)

secalert@redhathttp://lists.wikimedia.org/pipermail/mediawiki-announce/2012-March/000109.html
secalert@redhathttp://lists.wikimedia.org/pipermail/mediawiki-announce/2012-March/000110.html
secalert@redhathttp://osvdb.org/80361
secalert@redhathttp://secunia.com/advisories/48504
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/03/22/9
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/03/24/1
secalert@redhathttp://www.securityfocus.com/bid/52689
secalert@redhathttps://bugzilla.wikimedia.org/show_bug.cgi?id=34212
secalert@redhathttps://exchange.xforce.ibmcloud.com/vulnerabilities/78911
af854a3a-2127-422b-91ae-364da2661108http://lists.wikimedia.org/pipermail/mediawiki-announce/2012-March/000109.html
af854a3a-2127-422b-91ae-364da2661108http://lists.wikimedia.org/pipermail/mediawiki-announce/2012-March/000110.html
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/80361
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/48504
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2012/03/22/9
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2012/03/24/1

Is Your Infrastructure Affected by CVE-2012-1578?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2012-1578

📅 Published

🔄 Last Modified

🔗 References (18)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2012-1578?