Skip to main content

Centralauth Extension

1 CVEs product

Monthly

CVE-2013-4304 HIGH POC PATCH This Week

The CentralAuth extension for MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 caches a valid CentralAuthUser object in the centralauth_User cookie even when a user has. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Authentication Bypass Centralauth Extension Mediawiki
NVD
CVSS 2.0
7.5
EPSS
0.3%
EPSS 0% CVSS 7.5
HIGH POC PATCH This Week

The CentralAuth extension for MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 caches a valid CentralAuthUser object in the centralauth_User cookie even when a user has. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Authentication Bypass Centralauth Extension Mediawiki
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy