Description

The CentralAuth extension for MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 caches a valid CentralAuthUser object in the centralauth_User cookie even when a user has not successfully logged in, which allows remote attackers to bypass authentication without a password.

Remediation

References

CVE-2013-4304

Related Vulnerabilities

WordPress 3.7.x Denial of Service Vulnerability (3.7 - 3.7.25)

Ruby Other Vulnerability (CVE-2014-8090)

AbanteCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10755)

WordPress Plugin Social Share Buttons-Social Pug Multiple Unspecified Vulnerabilities (1.3.1)

WordPress Plugin WP Job Manager Unspecified Vulnerability (1.32.2)

Severity

High

Classification

CVE-2013-4304 CWE-287

Tags

Missing Update Known Vulnerabilities