Description
Unspecified vulnerability in MediaWiki 1.11 before 1.11.2 allows remote attackers to obtain sensitive "cross-site" information via the callback parameter in an API call for JavaScript Object Notation (JSON) formatted results.
Remediation
References
Related Vulnerabilities
PHP Integer Overflow or Wraparound Vulnerability (CVE-2017-5340)
PostgreSQL Numeric Errors Vulnerability (CVE-2014-0064)
Elgg Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6562)
WordPress Plugin Ocean Extra Multiple Vulnerabilities (2.1.2)
WordPress Plugin Email Artillery (MASS EMAIL) Multiple Vulnerabilities (4.1)