Unspecified vulnerability in MediaWiki 1.11 prior to 1.11.2 allows remote malicious users to obtain sensitive "cross-site" information via the callback parameter in an API call for JavaScript Object Notation (JSON) formatted results.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mediawiki mediawiki 1.11 |
||
mediawiki mediawiki 1.11.1 |