Lucene search
Gentoo FoundationMGASA-2013-0276HistorySep 14, 2013 - 12:15 a.m.
Updated mediawiki package fixes security vulnerabilities
2013-09-1400:15:05
Gentoo Foundation
advisories.mageia.org
12
0.008 Low
EPSS
Percentile
81.3%
Full path disclosure in MediaWiki before 1.20.7, when an invalid language is specified in ResourceLoader (CVE-2013-4301). Several API modules in MediaWiki before 1.20.7 allowed anti-CSRF tokens to be accessed via JSONP (CVE-2013-4302). An issue with the MediaWiki API in MediaWiki before 1.20.7 where an invalid property name could be used for XSS with older versions of Internet Explorer (CVE-2013-4303).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 2 | noarch | mediawiki | <Â 1.20.7-1 | mediawiki-1.20.7-1.mga2 |
| Mageia | 3 | noarch | mediawiki | <Â 1.20.7-1 | mediawiki-1.20.7-1.mga3 |
Related
openvas
openvas
Fedora Update for mediawiki FEDORA-2013-15984
2013-09-24 00:00:00
Mageia: Security Advisory (MGASA-2013-0276)
2022-01-28 00:00:00
Fedora Update for mediawiki FEDORA-2013-15984
2013-09-24 00:00:00
nessus
nessus
Fedora 19 : mediawiki-1.21.2-1.fc19 (2013-15984)
2013-09-21 00:00:00
Fedora 20 : mediawiki-1.21.2-1.fc20 (2013-15937)
2013-09-23 00:00:00
Mandriva Linux Security Advisory : mediawiki (MDVSA-2013:235)
2013-09-17 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: mediawiki-1.21.2-1.fc20
2013-09-23 00:16:58
[SECURITY] Fedora 19 Update: mediawiki-1.21.2-1.fc19
2013-09-20 16:26:42
[SECURITY] Fedora 18 Update: mediawiki-1.19.8-1.fc18
2013-09-20 16:25:33
securityvulns
securityvulns
[ MDVSA-2013:235 ] mediawiki
2013-10-03 00:00:00
debiancve
debiancve
prion
prion
Cross site request forgery (csrf)
2013-10-27 00:55:00
Design/Logic Flaw
2013-10-27 00:55:00
Cross site scripting
2019-12-11 19:15:00
cvelist
cvelist
debian
debian
[SECURITY] [DSA 2753-1] mediawiki security update
2013-09-13 07:56:24
cve
cve
ubuntucve
ubuntucve
gentoo
gentoo
MediaWiki: Multiple vulnerabilities
2013-10-28 00:00:00