EUVD-2013-6258

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Cross-site scripting vulnerability in MediaWiki allows remote code injection via CSS values

Reporter	Title	Published	Views	Family All 72
Circl	CVE-2013-6451	28 Jan 202019:37	–	circl
CVE	CVE-2013-6451	28 Jan 202014:56	–	cve
Cvelist	CVE-2013-6451	28 Jan 202014:56	–	cvelist
Debian CVE	CVE-2013-6451	28 Jan 202014:56	–	debiancve
Fedora	[SECURITY] Fedora 19 Update: mediawiki-1.23.7-1.fc19	12 Dec 201404:24	–	fedora
Fedora	[SECURITY] Fedora 19 Update: mediawiki-1.21.5-1.fc19	7 Feb 201403:06	–	fedora
Fedora	[SECURITY] Fedora 20 Update: mediawiki-1.21.5-1.fc20	7 Feb 201403:09	–	fedora
Fedora	[SECURITY] Fedora 19 Update: mediawiki-1.21.10-1.fc19	10 Jun 201402:52	–	fedora
Fedora	[SECURITY] Fedora 19 Update: mediawiki-1.21.9-1.fc19	6 May 201403:34	–	fedora
Fedora	[SECURITY] Fedora 19 Update: mediawiki-1.21.6-1.fc19	11 Mar 201404:08	–	fedora

[
  {
    "enisaIdVendor": [
      {
        "id": "30bba102-e498-3882-a433-306dfe76a3ab",
        "vendor": {
          "name": "Wikimedia Foundation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "b6811351-ddf3-3e0e-b376-51a71ead3c8d",
        "product": {
          "name": "mediawiki"
        },
        "product_version": "1.2x before 1.21.4"
      },
      {
        "id": "d0b884c3-f2c4-32fe-9b38-ed317f0fe790",
        "product": {
          "name": "mediawiki"
        },
        "product_version": "1.19.9 before 1.19.10"
      },
      {
        "id": "d11b48ea-3b5f-3d9d-b467-b814ff2a8b4a",
        "product": {
          "name": "mediawiki"
        },
        "product_version": "1.22.x before 1.22.1"
      }
    ]
  }
]

Source	Link
advisories	www.advisories.mageia.org/CVE-2013-6451.html
suse	www.suse.com/security/cve/CVE-2013-6451.html
lists	www.lists.wikimedia.org/pipermail/mediawiki-announce/2014-January/000138.html
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

7.7High risk

Vulners AI Score7.7

CVSS 3.16.1

CVSS 24.3

EPSS0.00301