PT-2005-1589 · Wikimedia · Mediawiki
Published
2005-02-24
·
Updated
2011-03-08
·
CVE-2005-0536
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
MediaWiki versions 1.3.x through 1.3.10
MediaWiki versions 1.4 beta through 1.4 rc1 (excluding 1.4 rc1)
Description
A directory traversal issue allows remote attackers to delete arbitrary files or determine file existence via a parameter related to image deletion.
Recommendations
For MediaWiki versions 1.3.x through 1.3.10, update to version 1.3.11 or later.
For MediaWiki versions 1.4 beta through 1.4 rc1 (excluding 1.4 rc1), update to version 1.4 rc1 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Mediawiki