Description

MediaWiki 1.18.0 allows remote attackers to obtain the installation path via vectors related to thumbnail creation.

Remediation

References

CVE-2014-1686

Related Vulnerabilities

LimeSurvey Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2019-16175)

SharePoint Improper Input Validation Vulnerability (CVE-2009-3830)

WordPress Plugin Cherry Team Members Information Disclosure (1.4.1)

MySQL CVE-2015-2611 Vulnerability (CVE-2015-2611)

Oracle Application Server CVE-2009-0983 Vulnerability (CVE-2009-0983)

Severity

Medium

Classification

CVE-2014-1686 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities