CVE-2012-4379 in MediaWikithông tin

Tóm tắt

Bởi MITRE

MediaWiki before 1.18.5, and 1.19.x before 1.19.2 does not send a restrictive X-Frame-Options HTTP header, which allows remote attackers to conduct clickjacking attacks via an embedded API response in an IFRAME element.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Nguồn

Might our Artificial Intelligence support you?

Check our Alexa App!