SecuritySpace - CVE-2015-8005

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2015-8005

Description: MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 uses the thumbnail ImageMagick command line argument, which allows remote attackers to obtain the installation path by reading the metadata of a PNG thumbnail file.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2015-8005
https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-October/000181.html
http://www.securitytracker.com/id/1034028

CVE ID:	CVE-2015-8005
Description:	MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 uses the thumbnail ImageMagick command line argument, which allows remote attackers to obtain the installation path by reading the metadata of a PNG thumbnail file.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2015-8005 https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-October/000181.html http://www.securitytracker.com/id/1034028