Description: A vulnerability has been reported in MediaWiki, which can potentially be exploited by malicious people to disclose sensitive information.
The vulnerability is caused due to an error in the processing of JSON callbacks, which can be exploited to disclose sensitive information by sending a specially crafted request to the API.
The vulnerability is reported in versions prior to 1.11.2. Versions before 1.11 are not affected.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
