8 matches found
GLSA-202107-40 : MediaWiki: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202107-40 MediaWiki: Multiple vulnerabilities Multiple vulnerabilities have been discovered in MediaWiki. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for...
Security fix for the ALT Linux 9 package mediawiki version 1.35.2-alt1
April 24, 2021 Vitaly Lipatov 1.35.2-alt1 - new version 1.35.2 with rpmrb script - T270453, CVE-2021-30153 T270713, CVE-2021-30152 - T270988, CVE-2021-30155 T272386, CVE-2021-30159 - T276843, CVE-2021-20270, CVE-2021-27291 - T277009, CVE-2021-30158 T278014, CVE-2021-30154 - T278058, CVE-2021-3015...
Fedora: Security Advisory for mediawiki (FEDORA-2021-f4223b6684)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Debian DSA-4889-1 : mediawiki - security update
Multiple security issues were found in MediaWiki, a website engine for collaborative work, which could result in incomplete page/blocking protection, denial of service or cross-site scripting. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...
MediaWiki < 1.31.12, 1.32 < 1.35.2 Multiple Vulnerabilities - Windows
MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mediawiki:mediawiki"; ifdescripti...
MediaWiki < 1.31.12, 1.32 < 1.35.2 Multiple Vulnerabilities - Linux
MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mediawiki:mediawiki"; ifdescripti...
UBUNTU-CVE-2021-30154
An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. On Special:NewFiles, all the mediastatistics-header- messages are output in HTML unescaped, leading to XSS...
CVE-2021-30154
CVE-2021-30154 affects MediaWiki prior to 1.31.12 and 1.32.x through 1.35.x prior to 1.35.2. The issue is an XSS in which the mediastatistics-header-* messages are output in HTML unescaped on Special:NewFiles, enabling potential HTML/JS injection. Root cause: unescaped HTML output in that page fl...