MediaWiki before 1.17.1 does not check for read permission before handling action=ajax requests, which allows remote attackers to obtain sensitive information by (1) leveraging the SpecialUpload::ajaxGetExistsWarning function, or by (2) leveraging an extension, as demonstrated by the CategoryTree, ExtTab, and InlineEditor extensions.
Advisories
Source ID Title
Debian DSA Debian DSA DSA-2366-1 mediawiki security update
EUVD EUVD EUVD-2011-4291 MediaWiki before 1.17.1 does not check for read permission before handling action=ajax requests, which allows remote attackers to obtain sensitive information by (1) leveraging the SpecialUpload::ajaxGetExistsWarning function, or by (2) leveraging an extension, as demonstrated by the CategoryTree, ExtTab, and InlineEditor extensions.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-07T00:09:18.393Z

Reserved: 2011-11-04T00:00:00

Link: CVE-2011-4361

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2012-01-08T11:55:19.797

Modified: 2025-04-11T00:51:21.963

Link: CVE-2011-4361

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.