Lucene search
HistoryOct 03, 2022 - 4:14 p.m.
CVE-2004-2186
cve
sql injection
mediawiki 1.3.5
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.4 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
49.3%
SQL injection vulnerability in MediaWiki 1.3.5 allows remote attackers to execute arbitrary SQL commands via SpecialMaintenance.
Affected configurations
Node
mediawikimediawikiMatch1.3.5
| CPE | Name | Operator | Version |
|---|---|---|---|
| mediawiki:mediawiki | mediawiki | eq | 1.3.5 |
Related
nvd
nvd
CVE-2004-2186
2004-12-31 05:00:00
cvelist
cvelist
CVE-2004-2186
2022-10-03 16:14:15
debiancve
debiancve
CVE-2004-2186
2022-10-03 16:14:15
nessus
nessus
MediaWiki < 1.3.11 Multiple Remote Vulnerabilities
2005-04-13 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.4 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
49.3%
Related for CVE-2004-2186