|Category:||Debian Local Security Checks|
|Title:||Debian Security Advisory DSA 2753-1 (mediawiki - information leak)|
|Summary:||It was discovered that in Mediawiki, a wiki engine, several API modules;allowed anti-CSRF tokens to be accessed via JSONP. These tokens protect;against cross site request forgeries and are confidential.|
It was discovered that in Mediawiki, a wiki engine, several API modules
allowed anti-CSRF tokens to be accessed via JSONP. These tokens protect
against cross site request forgeries and are confidential.
mediawiki on Debian Linux
For the oldstable distribution (squeeze), this problem has been fixed in
For the stable distribution (wheezy), this problem has been fixed in
For the testing distribution (jessie) and unstable distribution (sid),
this problem has been fixed in version 1.19.8+dfsg-1.
We recommend that you upgrade your mediawiki packages.
Common Vulnerability Exposure (CVE) ID: CVE-2013-4302|
Debian Security Information: DSA-2753 (Google Search)
XForce ISS Database: mediawiki-cve20134302-info-disclosure(86896)
|Copyright||Copyright (C) 2013 Greenbone Networks GmbH http://greenbone.net|
|This is only one of 86218 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.