Description

Directory traversal vulnerability in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allows remote attackers to delete arbitrary files or determine file existence via a parameter related to image deletion.

Remediation

References

CVE-2005-0536

Related Vulnerabilities

OpenSSL Other Vulnerability (CVE-2007-3108)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5014)

OpenSSL Access of Resource Using Incompatible Type ('Type Confusion') Vulnerability (CVE-2024-6119)

CrushFTP Server Deserialization of Untrusted Data Vulnerability (CVE-2017-14035)

Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2018-10237)

Severity

Medium

Classification

CVE-2005-0536

Tags

Missing Update Known Vulnerabilities