CVE-2008-5688

{"id": "CVE-2008-5688", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2008-12-19T17:30:03.407", "references": [{"url": "http://lists.wikimedia.org/pipermail/mediawiki-announce/2008-December/000080.html", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/33349", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.mediawiki.org/wiki/Manual:%24wgShowExceptionDetails", "source": "cve@mitre.org"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg01256.html", "source": "cve@mitre.org"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg01309.html", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "MediaWiki 1.8.1, and other versions before 1.13.3, when the wgShowExceptionDetails variable is enabled, sometimes provides the full installation path in a debugging message, which might allow remote attackers to obtain sensitive information via unspecified requests that trigger an uncaught exception."}, {"lang": "es", "value": "MediaWiki versi\u00f3n 1.8.1, y otras versiones anteriores a 1.13.3, cuando la variable wgShowExceptionDetails est\u00e1 habilitada, a veces proporciona el path de instalaci\u00f3n completa en un mensaje de depuraci\u00f3n, lo que podr\u00eda permitir a los atacantes remotos conseguir informaci\u00f3n confidencial por medio de peticiones no especificadas que desencadenan una excepci\u00f3n no detectada."}], "lastModified": "2023-11-07T02:03:15.463", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "136E5FD9-C0A0-4970-8852-D97C5BC723E5"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.8.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C5FD2871-90BB-4AFA-89D0-B9B5BE365771"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.8.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "36D35193-8AF8-4CB9-A47D-A58DE389515E"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.8.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E1CD7D7-546A-48FA-9C4C-1FB0CA22C6FA"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.8.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AAD648C1-0908-43F8-951C-E7EBF8FB8CB5"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.9.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B40FB49B-1E96-44BC-A9B0-9BDB28F858A2"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.9.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3A0921C-BEC5-4646-96FD-0529828B5BAC"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.9.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB4E8709-43E2-4ADC-8759-16AC265658C2"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.9.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A8A1D30-57E7-4010-B68A-8D22EA091FF6"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.9.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EF7C683-F6E2-4D79-B0F9-234C9FAFB7C0"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.9.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "962C4B03-ABDF-4E94-8DE0-E035186E0F4C"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.9.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "841A4099-1EB3-448A-81C2-67A68CF4B5C9"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.10.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0983C0E-9035-4256-AC99-C2C81C1634E6"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.10.0:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76F47EF6-2695-44FD-B4B0-9DE911BB57CC"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.10.0:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC61592E-7479-45C1-9263-D608B644EE79"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.10.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5460DB30-FA14-4017-BC8B-15F9451469F3"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.10.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ED2392D6-6ACF-4715-BBCD-B6DA9B91C750"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.10.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B0071C35-877F-44C6-BC39-B1AE885D7313"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.10.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD83CF24-FC29-40C4-8B07-5FB6591E9812"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8C54ADEF-F360-41C6-AE27-B6D12E5BAF9A"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.11:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "77FBC313-0615-42D9-8617-4DE42CAA48BE"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.11.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4DB5EF0E-4E1B-4131-9142-5FBB59C235D5"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.11.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F59B5992-716F-4901-BDD1-0C7E24BF9148"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.12.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "746023B5-2472-4FC9-BEDF-FE6A321F12B9"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.12.0:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D18C85B-E82B-46AE-959E-3FD32DB6F294"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.12.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "66714539-F1E1-4C16-AA12-059EEB1B9DF6"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.12.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A80044C9-9F76-468E-84F7-D7D529004AE6"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.12.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C7CD7F5A-F4E4-45B6-9179-BD1BCD75D297"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.13.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "79CDE6D3-A26D-4ECD-B949-B9DDB53F67C3"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.13.0:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3CC82BE-8DEA-47D7-B6B7-2FFDFB728ADE"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.13.0:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AFD79470-63A7-438B-A3BE-CABDAD7F848C"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.13.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A26F4C94-E3A5-456E-8E5E-36BA67DD4BD5"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.13.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C7C6D23B-B5C1-4F10-9F62-E81F639FF40F"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}