The Scribunto extension for MediaWiki allows remote attackers to obtain the rollback token and possibly other sensitive information via a crafted module, related to unstripping special page HTML.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: debian
Published: 2020-01-27T15:38:50
Updated: 2024-08-06T13:47:41.063Z
Reserved: 2015-01-03T00:00:00
Link: CVE-2014-9481
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-01-27T16:15:10.203
Modified: 2024-11-21T02:20:59.597
Link: CVE-2014-9481
Redhat
No data.