Description
Directory traversal vulnerability in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allows remote attackers to delete arbitrary files or determine file existence via a parameter related to image deletion.
Remediation
References
Related Vulnerabilities
OpenSSL Other Vulnerability (CVE-2007-3108)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5014)
OpenSSL Access of Resource Using Incompatible Type ('Type Confusion') Vulnerability (CVE-2024-6119)
CrushFTP Server Deserialization of Untrusted Data Vulnerability (CVE-2017-14035)
Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2018-10237)