Lucene search
K

23 matches found

OSV
OSV
added 2026/07/01 4:16 p.m.4 views

UBUNTU-CVE-2026-58024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Api/ApiUserrights.Php. This issue affects MediaWiki: from before 1.46.0, 1.45.4, 1.44.6, 1.43.9...

5.7CVSS6.1AI score0.00369EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/07/01 2:34 p.m.5 views

CVE-2026-58024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Api/ApiUserrights.Php. This issue affects MediaWiki: from before 1.46.0, 1.45.4, 1.44.6, 1.43.9...

5.7CVSS5.8AI score0.00369EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-0526

Malware in sbrugna...

6.1CVSS6.1AI score0.04701EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-0718

Malware in sbrugna...

6.1CVSS7.2AI score0.01121EPSS
Exploits0References6
OSV
OSV
added 2022/09/19 9:15 p.m.1 views

DEBIAN-CVE-2022-28201

An issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. Users with the editinterface permission can trigger infinite recursion, because a bare local interwiki is mishandled for the mainpage message...

4.4CVSS4.8AI score0.00407EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/09/19 9:15 p.m.1 views

CVE-2022-28201

An issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. Users with the editinterface permission can trigger infinite recursion, because a bare local interwiki is mishandled for the mainpage message...

4.4CVSS5.9AI score0.00407EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2022/09/19 9:15 p.m.51 views

CVE-2022-28201

An issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. Users with the editinterface permission can trigger infinite recursion, because a bare local interwiki is mishandled for the mainpage message...

4.4CVSS5.9AI score0.00407EPSS
Exploits1References3
OSV
OSV
added 2022/09/19 9:15 p.m.4 views

UBUNTU-CVE-2022-28201

An issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. Users with the editinterface permission can trigger infinite recursion, because a bare local interwiki is mishandled for the mainpage message...

4.4CVSS5.8AI score0.00407EPSS
Exploits1References4
OSV
OSV
added 2022/09/19 12:0 a.m.35 views

CVE-2022-28201

An issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. Users with the editinterface permission can trigger infinite recursion, because a bare local interwiki is mishandled for the mainpage message...

4.4CVSS6.5AI score0.00407EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2022/04/18 12:0 a.m.5 views

PT-2022-18870 · Mediawiki +1 · Mediawiki +1

Name of the Vulnerable Software and Affected Versions: MediaWiki versions prior to 1.35.6 MediaWiki versions 1.36.x prior to 1.36.4 MediaWiki versions 1.37.x prior to 1.37.2 Description: An issue was discovered in MediaWiki where users with the editinterface permission can trigger infinite...

9.8CVSS5.8AI score0.0182EPSS
Exploits6References56
Veracode
Veracode
added 2019/05/21 8:22 a.m.18 views

Cross-Site Scripting (XSS)

Apache JSPWiki is vulnerable to cross-site scripting. A remote attacker is able to inject arbitrary Javascript into a victim's browser via a malicious InterWiki link to steal session tokens or perform unwanted actions on behalf of the user...

6.1CVSS6AI score0.04701EPSS
Exploits0References5Affected Software1
UbuntuCve
UbuntuCve
added 2019/05/20 9:29 p.m.19 views

CVE-2019-10077

A carefully crafted InterWiki link could trigger an XSS vulnerability on Apache JSPWiki 2.9.0 to 2.11.0.M3, which could lead to session hijacking...

6.1CVSS6.3AI score0.04701EPSS
Exploits0References4
NVD
NVD
added 2019/05/20 9:29 p.m.36 views

CVE-2019-10077

A carefully crafted InterWiki link could trigger an XSS vulnerability on Apache JSPWiki 2.9.0 to 2.11.0.M3, which could lead to session hijacking...

6.1CVSS6AI score0.04701EPSS
Exploits0References4
NVD
NVD
added 2018/04/13 4:29 p.m.28 views

CVE-2017-0364

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where Special:Search allows redirects to any interwiki link...

6.1CVSS6.1AI score0.01121EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2018/04/13 4:29 p.m.26 views

CVE-2017-0364

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where Special:Search allows redirects to any interwiki link...

6.1CVSS6.9AI score0.01121EPSS
Exploits0References2
Prion
Prion
added 2018/04/13 4:29 p.m.26 views

Design/Logic Flaw

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where Special:Search allows redirects to any interwiki link...

5.8CVSS6.3AI score0.01121EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2018/04/13 4:29 p.m.3 views

UBUNTU-CVE-2017-0364

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where Special:Search allows redirects to any interwiki link...

6.1CVSS6.9AI score0.01121EPSS
Exploits0References3
OSV
OSV
added 2018/04/13 4:29 p.m.1 views

DEBIAN-CVE-2017-0363

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 has a flaw where Special:UserLogin?returnto=interwiki:foo will redirect to external sites...

6.1CVSS6.9AI score0.01121EPSS
Exploits0References1
OSV
OSV
added 2018/04/13 4:29 p.m.23 views

CVE-2017-0364

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where Special:Search allows redirects to any interwiki link...

6.1CVSS6.4AI score0.01121EPSS
Exploits0References3
OSV
OSV
added 2018/04/13 4:29 p.m.2 views

DEBIAN-CVE-2017-0364

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where Special:Search allows redirects to any interwiki link...

6.1CVSS7.2AI score0.01121EPSS
Exploits0References1
Rows per page
Query Builder