CVE-2015-8628

MEDIUM5.3EPSS 0.43%

發布日:2017/3/23修改日:2026/4/28

也稱為:DEBIAN-CVE-2015-8628

描述

The (1) Special:MyPage, (2) Special:MyTalk, (3) Special:MyContributions, (4) Special:MyUploads, and (5) Special:AllMyUploads pages in MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1 allow remote attackers to obtain sensitive user login information via crafted links combined with page view statistics.

受影響套件(1)

Debian/mediawikifrom 0, < 1:1.25.5-1

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	MEDIUM5.3	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-8628