Description

Directory traversal vulnerability in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allows remote attackers to delete arbitrary files or determine file existence via a parameter related to image deletion.

Remediation

References

CVE-2005-0536

Related Vulnerabilities

WordPress Plugin Booster for WooCommerce Cross-Site Scripting (5.6.1)

Serendipity Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-5475)

WordPress Plugin Woo Custom Checkout Field Multiple Vulnerabilities (1.3.2)

WordPress Plugin WP Header Images Cross-Site Scripting (2.0.0)

Django Incorrect Regular Expression Vulnerability (CVE-2018-7537)

Severity

Medium

Classification

CVE-2005-0536

Tags

Missing Update Known Vulnerabilities