Vulnerability Name:

CVE-2013-4306 (CCN-86893)

Assigned:2013-09-05
Published:2013-09-05
Updated:2019-07-18
Summary:Cross-site request forgery (CSRF) vulnerability in api/ApiQueryCheckUser.php in the CheckUser extension for MediaWiki, possibly Checkuser before 2.3, allows remote attackers to hijack the authentication of arbitrary users for requests that "perform sensitive write actions" via unspecified vectors.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-352
Vulnerability Consequences:Cross-Site Scripting
References:Source: MITRE
Type: CNA
CVE-2013-4306

Source: MLIST
Type: Patch
[MediaWiki-announce] 20130903 MediaWiki Security Release: 1.21.2, 1.20.7 and 1.19.8

Source: OSVDB
Type: Broken Link
96908

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20130904 Re: CVE request: MediaWiki Security Release: 1.21.2, 1.20.7 and 1.19.8

Source: CCN
Type: OSVDB ID: 96908
MediaWiki CheckUser Extension CSRF Weakness

Source: BID
Type: Third Party Advisory, VDB Entry
62210

Source: CCN
Type: BID-62210
MediaWiki CheckUser Extension CVE-2013-4306 Cross Site Request Forgery Vulnerability

Source: CCN
Type: MediaWiki Web site
Wikimedia

Source: CCN
Type: Bugzilla Bug 45019
Checkuser API does not use tokens

Source: CONFIRM
Type: Issue Tracking, Patch
https://bugzilla.wikimedia.org/show_bug.cgi?id=45019

Source: XF
Type: UNKNOWN
mediawiki-cve20134306-csrf(86893)

Source: XF
Type: VDB Entry
mediawiki-cve20134306-csrf(86893)

Source: CONFIRM
Type: Patch
https://git.wikimedia.org/commit/mediawiki%2Fextensions%2FCheckUser.git/99ad25d066ce6111e798427cba7f21526827f651

Vulnerable Configuration:Configuration 1:
  • cpe:/a:mediawiki:mediawiki:*:*:*:*:*:*:*:* (Version >= 1.19.0 and < 1.19.8)
  • OR cpe:/a:mediawiki:mediawiki:*:*:*:*:*:*:*:* (Version >= 1.20.0 and < 1.20.7)
  • OR cpe:/a:mediawiki:mediawiki:*:*:*:*:*:*:*:* (Version >= 1.21.0 and < 1.21.2)

    • Configuration CCN 1:
  • cpe:/a:mediawiki:mediawiki:1.19.7:*:*:*:*:*:*:*
  • OR cpe:/a:mediawiki:mediawiki:1.20.6:*:*:*:*:*:*:*
  • OR cpe:/a:mediawiki:mediawiki:1.21.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    mediawiki mediawiki *
    mediawiki mediawiki *
    mediawiki mediawiki *
    mediawiki mediawiki 1.19.7
    mediawiki mediawiki 1.20.6
    mediawiki mediawiki 1.21.1