Vigil@nce - MediaWiki: information disclosure via REST API Autocomplete Search Results, analyzed on 05/10/2022
December 2022 by Vigil@nce
An attacker can bypass access restrictions to data of MediaWiki, via REST API Autocomplete Search Results, in order to read sensitive information.
Plus d'information sur : https://vigilance.fr/vulnerability/MediaWiki-information-disclosure-via-REST-API-Autocomplete-Search-Results-39461