What is the severity of CVE-2019-12466?

CVE-2019-12466 is considered a medium severity vulnerability due to its potential for CSRF attacks.

How do I fix CVE-2019-12466?

To fix CVE-2019-12466, upgrade to MediaWiki versions 1.32.2, 1.31.2, or 1.27.6.

CVE-2019-12466 affects MediaWiki versions from 1.27.0 up to and including 1.32.1.

CVE-2019-12466 is a cross-site request forgery (CSRF) vulnerability related to the logout feature.

If upgrading is not possible, consider implementing additional CSRF protections or monitoring for suspicious logout activities.

8.8

CWE

352

10/7/2019

24/5/2022

4/8/2024

First published: Wed Jul 10 2019(Updated: )

Use token when logging out

Credit: cve@mitre.org cve@mitre.org

What is the severity of CVE-2019-12466?
CVE-2019-12466 is considered a medium severity vulnerability due to its potential for CSRF attacks.
How do I fix CVE-2019-12466?
To fix CVE-2019-12466, upgrade to MediaWiki versions 1.32.2, 1.31.2, or 1.27.6.
Which versions of MediaWiki are affected by CVE-2019-12466?
CVE-2019-12466 affects MediaWiki versions from 1.27.0 up to and including 1.32.1.
What type of vulnerability is CVE-2019-12466?
CVE-2019-12466 is a cross-site request forgery (CSRF) vulnerability related to the logout feature.
What should I do if I cannot upgrade to a fixed version for CVE-2019-12466?
If upgrading is not possible, consider implementing additional CSRF protections or monitoring for suspicious logout activities.