Description MediaWiki 1.18.0 allows remote attackers to obtain the installation path via vectors related to thumbnail creation. Remediation References CVE-2014-1686 Related Vulnerabilities MySQL CVE-2022-21632 Vulnerability (CVE-2022-21632) Microsoft SQL Server Other Vulnerability (CVE-2004-1560) WordPress Plugin WP-TopBar Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities (4.02) Joomla! Core 2.5.x Clickjacking Vulnerability (2.5.0 - 2.5.7) ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9465) Severity Medium Classification CVE-2014-1686 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Tags Missing Update Known Vulnerabilities