Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2020-35478

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - MediaWiki before 1.35.1 allows XSS via BlockLogFormatter.php. MediaWiki:blanknamespace potentially can be output as raw HTML with SCRIPT tags via...

6.1CVSS6.7AI score0.01353EPSS
Exploits1References2
ALT Linux
ALT Linux
added 2020/12/30 12:0 a.m.28 views

Security fix for the ALT Linux 9 package mediawiki version 1.35.1-alt1

1.35.1-alt1 built Dec. 30, 2020 Vitaly Lipatov in task 263837 Dec. 23, 2020 Vitaly Lipatov - new version 1.35.1 with rpmrb script - T268894, CVE-2020-35474, T268917, CVE-2020-35475 - T268938, CVE-2020-35478, CVE-2020-35479 - T205908, CVE-2020-35477, T120883, CVE-2020-35480...

5CVSS6AI score0.01573EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2020/12/28 12:0 a.m.51 views

Fedora 33 : mediawiki (2020-0be2d40e13)

https://lists.wikimedia.org/pipermail/mediawiki-announce/2020-December /000268.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible witho...

7.5CVSS6.2AI score0.01573EPSS
Exploits4References8
OpenVAS
OpenVAS
added 2020/12/22 12:0 a.m.18 views

MediaWiki < 1.31.11, 1.32 < 1.35.1 Multiple Vulnerabilities - Linux

MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mediawiki:mediawiki"; ifdescripti...

7.5CVSS6.1AI score0.01573EPSS
Exploits4References1
OpenVAS
OpenVAS
added 2020/12/22 12:0 a.m.24 views

MediaWiki < 1.31.11, 1.32 < 1.35.1 Multiple Vulnerabilities - Windows

MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mediawiki:mediawiki"; ifdescripti...

7.5CVSS6.1AI score0.01573EPSS
Exploits4References1
RedhatCVE
RedhatCVE
added 2020/12/18 5:40 p.m.21 views

CVE-2020-35478

MediaWiki before 1.35.1 allows XSS via BlockLogFormatter.php. MediaWiki:blanknamespace potentially can be output as raw HTML with SCRIPT tags via LogFormatter::makePageLink. This affects MediaWiki 1.33.0 and later...

6.1CVSS1.4AI score0.01353EPSS
Exploits1References4
Circl
Circl
added 2020/12/18 12:46 p.m.6 views

CVE-2020-35478

creationtimestamp| type| source ---|---|--- 2020-12-18 12:46:47+00:00| seen| https://t.me/cibsecurity/21052...

6.1CVSS6.4AI score0.01353EPSS
Exploits1References1
CVE
CVE
added 2020/12/18 7:33 a.m.65 views

CVE-2020-35478

MediaWiki prior to version 1.35.1 is vulnerable to cross-site scripting via BlockLogFormatter.php, with MediaWiki:blanknamespace potentially outputting raw HTML using SCRIPT tags through LogFormatter::makePageLink(). Affected pages include MediaWiki 1.33.0 and later. The issue is documented acros...

6.1CVSS5.9AI score0.01353EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder