Lucene search
K

4 matches found

OSV
OSV
added 2023/12/22 2:15 a.m.1 views

UBUNTU-CVE-2023-51704

An issue was discovered in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. In includes/logging/RightsLogFormatter.php, group--member messages can result in XSS on Special:log/rights...

6.1CVSS5.8AI score0.00681EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/12/21 12:0 a.m.3 views

PT-2023-8973 · Mediawiki +1 · Mediawiki +1

Name of the Vulnerable Software and Affected Versions: MediaWiki versions prior to 1.35.14 MediaWiki versions 1.36.x through 1.39.x before 1.39.6 MediaWiki versions 1.40.x before 1.40.2 Description: The issue is related to improper input neutralization during web page creation, which can lead to...

7.5CVSS6AI score0.00898EPSS
Exploits2References31
OSV
OSV
added 2020/12/18 8:15 a.m.3 views

UBUNTU-CVE-2020-35477

MediaWiki before 1.35.1 blocks legitimate attempts to hide log entries in some situations. If one sets MediaWiki:Mainpage to Special:MyLanguage/Main Page, visits a log entry on Special:Log, and toggles the "Change visibility of selected log entries" checkbox or a tags checkbox next to it, there i...

5.3CVSS7.1AI score0.01512EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2018/10/01 12:0 a.m.4 views

PT-2018-3640 · Wikimedia +1 · Mediawiki +1

Name of the Vulnerable Software and Affected Versions: MediaWiki versions prior to 1.35.1 Description: The issue is related to a lack of input validation mechanism in MediaWiki, which can be exploited by a remote attacker to impact data integrity. Specifically, when MediaWiki:Mainpage is set to...

7.5CVSS5.1AI score0.01573EPSS
Exploits5References52
Rows per page
Query Builder