CVE-2020-15005
CVSS v3.1
3.1 (Low)
CVSS v2.0
2.6 (Low)
EPSS
0.20 % (57th)
Affected Products
3
Advisories
2
In MediaWiki before 1.31.8, 1.32.x and 1.33.x before 1.33.4, and 1.34.x before 1.34.2, private wikis behind a caching server using the img_auth.php image authorization security feature may have had their files cached publicly, so any unauthorized user could view them. This occurs because Cache-Control and Vary headers were mishandled.
Weaknesses
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2020-06-24 23:15:10
(4 years ago) - Updated Date
-
2023-11-07 03:17:23
(10 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...