Description
MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1 do not properly sanitize parameters when calling the cURL library, which allows remote attackers to read arbitrary files via an @ (at sign) character in unspecified POST array parameters.
Remediation
References
Related Vulnerabilities
WordPress Plugin Survey Maker-Best WordPress Survey SQL Injection (3.1.1)
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2020-1439)
WordPress Plugin Live Chat with Facebook Messenger Cross-Site Scripting (1.4.4)
Mailman Other Vulnerability (CVE-2006-0052)
WordPress Plugin WP-DownloadManager Cross-Site Request Forgery (1.60)