Vulners
Lucene search
| Reporter | Title | Published | Views | Family All 91 |
|---|---|---|---|---|
 | MediaWiki <= 1.22.1 PdfHandler Remote Code Execution Exploit | 2 Feb 201400:00 | – | zdt |
| MediaWiki <= 1.22.1 PdfHandler Remote Code Execution Exploit | 2 Feb 201400:00 | – | zdt |
| MediaWiki Thumb.php Remote Command Execution Exploit | 20 Feb 201400:00 | – | zdt |
 | CVE-2014-1610 | 1 Feb 201400:00 | – | circl |
 | MediaWiki Input Validation Remote Code Execution (CVE-2014-1610) | 28 Jan 201400:00 | – | checkpoint_advisories |
 | CVE-2014-1610 | 30 Jan 201423:00 | – | cvelist |
 | [SECURITY] [DSA 2891-1] mediawiki security update | 30 Mar 201409:25 | – | debian |
| [SECURITY] [DSA 2891-2] mediawiki regression update | 31 Mar 201417:07 | – | debian |
| [SECURITY] [DSA 2891-3] mediawiki regression update | 4 Apr 201418:02 | – | debian |
 | CVE-2014-1610 | 30 Jan 201423:00 | – | debiancve |
10
Node
OROROROROROROROROROROROROROROROR
10
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| f | query param | /mediawiki1221/thumb.php | Remote Command Execution via shell metacharacters in the thumb.php width parameter. | CWE-20 |
| w | query param | /mediawiki1221/thumb.php | Remote Command Execution via shell metacharacters in the thumb.php width parameter. | CWE-20 |
| width | query param | /mediawiki1221/thumb.php | Remote Command Execution via shell metacharacters in the thumb.php width parameter. | CWE-20 |
| 1 | query param | /mediawiki1221/images/longcat.php | Direct access to image handler path with query parameters used in exploit attempts. | CWE-20 |
| id | query param | /mediawiki1221/images/longcat.php | Direct access to image handler path with query parameters used in exploit attempts. | CWE-20 |
| width | path | /extensions/PdfHandler/PdfHandler_body.php | PdfHandler processing that concatenates shell commands from width parameter during transform. | CWE-20 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
29 Apr 2026 01:13Current
6.9Medium risk
Vulners AI Score6.9
CVSS 26
EPSS0.48041