22 matches found
PT-2022-22316 · Mediawiki +1 · Mediawiki +1
Name of the Vulnerable Software and Affected Versions: MediaWiki versions through 1.38.1 Description: An issue in MediaWiki allows the creation of larger lexemes than the capped length of a thousand characters, as this length is not validated. This introduces denial-of-service attack vectors with...
CVE-2013-4307
CVE-2013-4307 affects the Wikibase extension for MediaWiki, with multiple XSS vulnerabilities in repo/includes/EntityView.php. The issues arise in MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2, allowing remote attackers to inject arbitrary script or HTML via a lab...