Description
Unspecified vulnerability in MediaWiki 1.11 before 1.11.2 allows remote attackers to obtain sensitive "cross-site" information via the callback parameter in an API call for JavaScript Object Notation (JSON) formatted results.
Remediation
References
Related Vulnerabilities
Liferay Portal Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-26265)
Oracle Application Server CVE-2006-3712 Vulnerability (CVE-2006-3712)
MySQL CVE-2018-2665 Vulnerability (CVE-2018-2665)
WordPress Plugin Post Grid PHP Object Injection (2.0.11)
WordPress Plugin DX-Contribute Cross-Site Request Forgery (1.2.0)