CVEs affecting projects tracked on Release Alert, from NVD & OSV.
CVE-2012-5391 — MEDIUM severity vulnerability | Release Alert
CVE-2012-5391
6.8
MEDIUMCVSS v2
Published
June 2, 2014
Affected
2 projects
Assigned by
MITRE
Severity scale
010
Description
Session fixation vulnerability in Special:UserLogin in MediaWiki before 1.18.6, 1.19.x before 1.19.3, and 1.20.x before 1.20.1 allows remote attackers to hijack web sessions via the session_id.
GitHub🌻 The collaborative editing software that runs Wikipedia. Mirror from https://gerrit.wikimedia.org/g/mediawiki/core. See https://mediawiki.org/wiki/Developer_access for contributing.