Session fixation vulnerability in the CentralAuth extension for MediaWiki before 1.18.6, 1.19.x before 1.19.3, and 1.20.x before 1.20.1 allows remote attackers to hijack web sessions via the centralauth_Session cookie.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2014-06-02T15:00:00
Updated: 2024-08-06T21:05:47.249Z
Reserved: 2012-10-17T00:00:00
Link: CVE-2012-5395
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-06-02T15:55:08.293
Modified: 2024-11-21T01:44:39.940
Link: CVE-2012-5395
Redhat
No data.