Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2017-0362HistoryApr 13, 2018 - 4:29 p.m.
CVE-2017-0362
2018-04-1316:29:00
Debian Security Bug Tracker
security-tracker.debian.org
9
0.002 Low
EPSS
Percentile
61.2%
Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where the “Mark all pages visited” on the watchlist does not require a CSRF token.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | mediawiki | < 1:1.27.2-1 | mediawiki_1:1.27.2-1_all.deb |
| Debian | 11 | all | mediawiki | < 1:1.27.2-1 | mediawiki_1:1.27.2-1_all.deb |
| Debian | 10 | all | mediawiki | < 1:1.27.2-1 | mediawiki_1:1.27.2-1_all.deb |
| Debian | 999 | all | mediawiki | < 1:1.27.2-1 | mediawiki_1:1.27.2-1_all.deb |
| Debian | 13 | all | mediawiki | < 1:1.27.2-1 | mediawiki_1:1.27.2-1_all.deb |
Related
osv
osv
CVE-2017-0362
2018-04-13 16:29:00
redhatcve
redhatcve
CVE-2017-0362
2018-04-19 23:19:22
cvelist
cvelist
prion
prion
Cross site request forgery (csrf)
2018-04-13 16:29:00
ubuntucve
ubuntucve
CVE-2017-0362
2018-04-13 00:00:00
cve
cve
CVE-2017-0362
2018-04-13 16:29:00
nessus
nessus
MediaWiki 1.23.x < 1.23.16 / 1.27.x < 1.27.2 / 1.28.x < 1.28.1 Multiple Vulnerabilities
2017-04-10 00:00:00
Fedora 25 : mediawiki (2017-3fb95ed01f)
2017-04-17 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2017-0110)
2022-01-28 00:00:00
MediaWiki Multiple Vulnerabilities (Apr 2017) - Windows
2017-06-20 00:00:00
MediaWiki Multiple Vulnerabilities (Apr 2017) - Linux
2017-06-20 00:00:00
mageia
mageia
Updated mediawiki packages fix security vulnerability
2017-04-16 09:29:12
archlinux
archlinux
[ASA-201704-3] mediawiki: multiple issues
2017-04-07 00:00:00