Lucene search
FreeBSD466BA8BD-D033-11ED-ADDF-080027EDA32CHistoryApr 02, 2020 - 12:00 a.m.
mediawiki -- multiple vulnerabilities
2020-04-0200:00:00
vuxml.freebsd.org
9
0.003 Low
EPSS
Percentile
66.0%
Mediawikwi reports:
(T285159, CVE-2023-PENDING) SECURITY: X-Forwarded-For header allows
brute-forcing autoblocked IP addresses.
(T326946, CVE-2020-36649) SECURITY: Bundled PapaParse copy in
VisualEditor has known ReDos.
(T330086, CVE-2023-PENDING) SECURITY: OATHAuth allows replay attacks when
MediaWiki is configured without ObjectCache; Insecure Default Configuration.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | mediawiki135 | < 1.35.10 | UNKNOWN |
| FreeBSD | any | noarch | mediawiki138 | < 1.38.6 | UNKNOWN |
| FreeBSD | any | noarch | mediawiki139 | < 1.39.3 | UNKNOWN |
Related
prion
prion
Security feature bypass
2023-01-11 15:15:00
cve
cve
CVE-2020-36649
2023-01-11 15:15:09
ubuntucve
ubuntucve
CVE-2020-36649
2023-01-11 00:00:00
osv
osv
PapaParse Inefficient Regular Expression Complexity vulnerability
2023-01-11 15:30:28
CVE-2020-36649
2023-01-11 15:15:09
cvelist
cvelist
CVE-2020-36649 mholt PapaParse papaparse.js redos
2023-01-11 14:50:51
debiancve
debiancve
CVE-2020-36649
2023-01-11 15:15:09
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2023-01-20 07:32:00
redhatcve
redhatcve
CVE-2020-36649
2023-01-12 07:35:22
github
github
PapaParse Inefficient Regular Expression Complexity vulnerability
2023-01-11 15:30:28
openvas
openvas
MediaWiki < 1.35.10, 1.36.x < 1.38.6, 1.39.x < 1.39.3 Multiple Vulnerabilities - Windows
2023-04-05 00:00:00
MediaWiki < 1.35.10, 1.36.x < 1.38.6, 1.39.x < 1.39.3 Multiple Vulnerabilities - Linux
2023-04-05 00:00:00
Mageia: Security Advisory (MGASA-2023-0204)
2023-06-29 00:00:00
mageia
mageia
Updated mediawiki packages fix security vulnerability
2023-06-28 08:21:41