Lucene search
HistoryNov 09, 2015 - 6:59 p.m.
CVE-2015-8006
cve-2015-8006
cross-site scripting
xss
pagetriage
toolbar
remote attackers
web script
html
mediawiki
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
7.7 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.9%
Cross-site scripting (XSS) vulnerability in the PageTriage toolbar in the PageTriage extension for MediWiki allows remote attackers to inject arbitrary web script or HTML via the page title.
Affected configurations
Node
pagetriage_projectpagetriagemediawiki
| CPE | Name | Operator | Version |
|---|---|---|---|
| pagetriage_project:pagetriage | pagetriage project pagetriage | eq | * |
Related
prion
prion
Cross site scripting
2015-11-09 18:59:00
nvd
nvd
CVE-2015-8006
2015-11-09 18:59:06
cvelist
cvelist
CVE-2015-8006
2015-11-09 18:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: mediawiki-1.24.4-1.fc21
2015-11-05 21:50:58
[SECURITY] Fedora 23 Update: mediawiki-1.25.3-1.fc23
2015-11-05 22:26:54
[SECURITY] Fedora 22 Update: mediawiki-1.25.3-1.fc22
2015-11-05 23:27:59
openvas
openvas
Fedora Update for mediawiki FEDORA-2015-24
2015-11-06 00:00:00
Fedora Update for mediawiki FEDORA-2015-97
2015-11-06 00:00:00
nessus
nessus
Fedora 21 : mediawiki-1.24.4-1.fc21 (2015-97fe05f788)
2016-03-04 00:00:00
Fedora 22 : mediawiki-1.25.3-1.fc22 (2015-24fe8b66c9)
2016-03-04 00:00:00
freebsd
freebsd
mediawiki -- multiple vulnerabilities
2015-10-16 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
7.7 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.9%
Related for CVE-2015-8006