The host is running MediaWiki and is prone to information disclosure vulnerabilities.

Successful exploitation will allow remote attackers to obtain CSRF tokens, bypass the cross-site request forgery (CSRF) protection mechanism and gain knowledge on sensitive directories on the remote web server via requests. Impact Level: Application

Upgrade to MediaWiki Version 1.19.8 or 1.20.7 or 1.21.2 or later.

The flaws are due to, - An error within the 'tokens', 'unblock', 'login', 'createaccount', and 'block' API calls can be exploited to disclose the CSRF token value. - The application discloses the full installation path in an error message when an invalid language is specified in ResourceLoader to 'load.php' script.

MediaWiki version 1.19.x before 1.19.8, 1.20.x before 1.20.7 and 1.21.x before 1.21.2

Send a crafted data via HTTP GET request and check whether it is vulnerable or not.

• http://seclists.org/oss-sec/2013/q3/553
• http://secunia.com/advisories/54715
• http://xforce.iss.net/xforce/xfdb/86896
• https://bugzilla.wikimedia.org/show_bug.cgi?id=46332
• https://bugzilla.wikimedia.org/show_bug.cgi?id=49090

---

Updated on 2015-03-25