Back to search
CVE-2008-5688
Published: Dec 19, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
MediaWiki 1.8.1, and other versions before 1.13.3, when the wgShowExceptionDetails variable is enabled, sometimes provides the full installation path in a debugging message, which might allow remote attackers to obtain sensitive information via unspecified requests that trigger an uncaught exception.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
FEDORA-2008-11802
vendor-advisory
x_refsource_FEDORA
[mediawiki-announce] 20081215 MediaWiki 1.13.3, 1.12.2, 1.6.11 security update
mailing-list
x_refsource_MLIST
http://www.mediawiki.org/wiki/Manual:%24wgShowExceptionDetails
x_refsource_MISC
FEDORA-2008-11688
vendor-advisory
x_refsource_FEDORA
33349
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now