Lucene search
Arch LinuxASA-201409-4HistorySep 29, 2014 - 12:00 a.m.
mediawiki: Cross-site Scripting (XSS)
2014-09-2900:00:00
Arch Linux
lists.archlinux.org
28
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
61.2%
It was discovered that MediaWiki, a wiki engine, did not sufficiently
filter CSS in uploaded SVG files, allowing for cross site scripting.
Related
nessus
nessus
MediaWiki < 1.19.19 / 1.22.11 / 1.23.4 SVG Upload and CSS XSS
2014-10-06 00:00:00
Fedora 19 : mediawiki-1.23.4-1.fc19 (2014-11582)
2014-10-06 00:00:00
Fedora 20 : mediawiki-1.23.4-1.fc20 (2014-11727)
2014-10-06 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: mediawiki-1.23.4-1.fc21
2014-10-01 04:22:02
[SECURITY] Fedora 20 Update: mediawiki-1.23.4-1.fc20
2014-10-06 05:05:28
[SECURITY] Fedora 19 Update: mediawiki-1.23.4-1.fc19
2014-10-06 05:04:38
prion
prion
Cross site scripting
2014-09-30 14:55:00
debiancve
debiancve
CVE-2014-7199
2014-09-30 14:55:00
ubuntucve
ubuntucve
CVE-2014-7199
2014-09-30 00:00:00
openvas
openvas
MediaWiki 'SVG File' Cross Site Scripting Vulnerability - Linux
2015-11-26 00:00:00
Debian Security Advisory DSA 3036-1 (mediawiki - security update)
2014-10-01 00:00:00
Debian: Security Advisory (DSA-3036-1)
2014-10-01 00:00:00
cve
cve
CVE-2014-7199
2014-09-30 14:55:00
mageia
mageia
Updated mediawiki packages fix security vulnerbilities
2014-10-07 13:22:51
archlinux
archlinux
mediawiki: multiple issues
2015-04-10 00:00:00
gentoo
gentoo
MediaWiki: Multiple vulnerabilities
2015-02-07 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
61.2%
Related for ASA-201409-4