vulnerability
MediaWiki: Cleartext Transmission of Sensitive Information (CVE-2020-29005)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:P/I:N/A:N) | Jan 29, 2021 | Feb 5, 2021 | Aug 5, 2021 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Published
Jan 29, 2021
Added
Feb 5, 2021
Modified
Aug 5, 2021
Description
The API in the Push extension for MediaWiki through 1.35 used cleartext for ApiPush credentials, allowing for potential information disclosure.
Solution
mediawiki-upgrade-latest
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.