CVE-2012-4379 in MediaWikiالمعلومات

الملخص

بحسب MITRE

MediaWiki before 1.18.5, and 1.19.x before 1.19.2 does not send a restrictive X-Frame-Options HTTP header, which allows remote attackers to conduct clickjacking attacks via an embedded API response in an IFRAME element.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

حجز

21/08/2012

إفشاء

19/10/2017

الاعتدال

تمت الموافقة

إدخال

VDB-108256

EPSS

0.01446

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you want to use VulDB in your project?

Use the official API to access entries easily!