Unspecified vulnerability in MediaWiki 1.11 to 1.11.2 allows remote attackers to obtain sensitive "cross-site" information via the callback parameter in an API call for JavaScript Object Notation (JSON) formatted results.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1318)