Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2014-7199
HistorySep 30, 2014 - 2:55 p.m.

CVE-2014-7199

2014-09-3014:55:00
CWE-79
[email protected]
web.nvd.nist.gov
33
cve-2014-7199
cross-site scripting
xss
vulnerability
mediawiki
nvd

7.3 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

61.0%

JSON

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.19, 1.22.x before 1.22.11, and 1.23.x before 1.23.4 allows remote attackers to inject arbitrary web script or HTML via a crafted SVG file.

Related

prion 1
nessus 8
fedora 3
debiancve 1
openvas 7
archlinux 2
ubuntucve 1
mageia 1
gentoo 1
prion
prion
Cross site scripting
2014-09-30 14:55:00
nessus
nessus
MediaWiki < 1.19.19 / 1.22.11 / 1.23.4 SVG Upload and CSS XSS
2014-10-06 00:00:00
Fedora 19 : mediawiki-1.23.4-1.fc19 (2014-11582)
2014-10-06 00:00:00
Fedora 20 : mediawiki-1.23.4-1.fc20 (2014-11727)
2014-10-06 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: mediawiki-1.23.4-1.fc21
2014-10-01 04:22:02
[SECURITY] Fedora 20 Update: mediawiki-1.23.4-1.fc20
2014-10-06 05:05:28
[SECURITY] Fedora 19 Update: mediawiki-1.23.4-1.fc19
2014-10-06 05:04:38
debiancve
debiancve
CVE-2014-7199
2014-09-30 14:55:00
openvas
openvas
MediaWiki 'SVG File' Cross Site Scripting Vulnerability (Linux)
2015-11-26 00:00:00
Debian Security Advisory DSA 3036-1 (mediawiki - security update)
2014-10-01 00:00:00
Debian Security Advisory DSA 3036-1 (mediawiki - security update)
2014-10-01 00:00:00
archlinux
archlinux
mediawiki: Cross-site Scripting (XSS)
2014-09-29 00:00:00
mediawiki: multiple issues
2015-04-10 00:00:00
ubuntucve
ubuntucve
CVE-2014-7199
2014-09-30 00:00:00
mageia
mageia
Updated mediawiki packages fix security vulnerbilities
2014-10-07 13:22:51
gentoo
gentoo
MediaWiki: Multiple vulnerabilities
2015-02-07 00:00:00

7.3 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

61.0%

JSON
Related for CVE-2014-7199
prion1nessus8fedora3debiancve1openvas7archlinux2ubuntucve1mageia1gentoo1