Description

Unspecified vulnerability in MediaWiki 1.11 before 1.11.2 allows remote attackers to obtain sensitive "cross-site" information via the callback parameter in an API call for JavaScript Object Notation (JSON) formatted results.

Remediation

References

CVE-2008-1318

Related Vulnerabilities

PHP Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2022-31626)

WordPress Plugin WP Mobile Detector Cross-Site Scripting (3.2)

Oracle Database Server Improper Input Validation Vulnerability (CVE-2018-1000873)

Oracle Database Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2007-0272)

WordPress Plugin Awesome Support-WordPress HelpDesk & Support Cross-Site Scripting (6.0.6)

Severity

Medium

Classification

CVE-2008-1318 CWE-200

Tags

Missing Update Known Vulnerabilities