MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2013-4306
Reference:
CVE-2013-4306
Title:
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability
Overview:
Cross-site request forgery (CSRF) vulnerability in api/ApiQueryCheckUser.php in the CheckUser extension for MediaWiki possibly Checkuser before 2.3 allows remote attackers to hijack the authentication of arbitrary users for requests that quotperform sensitive write actionsquot via unspecified vectors.