Description
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. The REST API publicly caches results from private wikis.
Remediation
References
Related Vulnerabilities
WordPress Plugin Relevant-Related Posts by BestWebSoft Cross-Site Scripting (1.0.7)
WordPress Plugin Caldera Forms-More Than Contact Forms Arbitrary File Disclosure (1.8.1)
Jenkins Improper Access Control Vulnerability (CVE-2015-5325)
Apache Tomcat Integer Overflow or Wraparound Vulnerability (CVE-2015-8751)