MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2012-5394 - Vulnerability Database

MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2012-5394

Medium

Reference: CVE-2012-5394

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2012-5394

Title: MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability

Overview:

Cross-site request forgery (CSRF) vulnerability in the CentralAuth extension for MediaWiki before 1.19.9 1.20.x before 1.20.8 and 1.21.x before 1.21.3 allows remote attackers to hijack the authentication of users for requests that login via vectors involving image loading.