[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: Re: [oss-security] CVE Request -- MediaWiki - v1.15.2
From: "Steven M. Christey" <coley () linus ! mitre ! org>
Date: 2010-03-30 19:56:03
Message-ID: Pine.GSO.4.64.1003301555400.4709 () faron ! mitre ! org
[Download RAW message or body]
On Tue, 9 Mar 2010, Jan Lieskovsky wrote:
> a, a CSS validation issue was discovered which allows editors to display
> external images in wiki pages.
Use CVE-2010-1189
> b, a data leakage vulnerability was discovered in thumb.php which affects
> wikis which restrict access to private files using img_auth.php, or
> some similar scheme.
Use CVE-2010-1190
- Steve
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic