22 matches found
EUVD-2020-27317
Malware in sbrugna...
EUVD-2021-32846
Malicious code in bioql PyPI...
CVE-2020-6163
The WikibaseMediaInfo extension 1.35 for MediaWiki allows XSS because of improper template syntax within the PropertySuggestionsWidget template in the templates/search/PropertySuggestionsWidget.mustache+dom file...
BIT-MEDIAWIKI-2020-6163
The WikibaseMediaInfo extension 1.35 for MediaWiki allows XSS because of improper template syntax within the PropertySuggestionsWidget template in the templates/search/PropertySuggestionsWidget.mustache+dom file...
BIT-MEDIAWIKI-2021-46146
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. The WikibaseMediaInfo component is vulnerable to XSS via the caption fields for a given media file...
MediaWiki 1.37.x < 1.37.1 Multiple Vulnerabilities
According to its self-reported version number, the instance of MediaWiki hosted on the remote web server is prior to 1.35.5, 1.36.x prior to 1.36.3 or 1.37 prior to 1.37.1, It is, therefore, affected by a number of vulnerabilities as follows. - A vulnerability in the date validation functions of...
MediaWiki < 1.35.0 Multiple Vulnerabilities
According to its self-reported version number, the instance of MediaWiki hosted on the remote web server is prior to 1.35. It is, therefore, affected by multiple vulnerabilities: - A vulnerability in the default Cologne Blue skin in the qbfind paramter inside CologneBlueTemplate.php leading to...
MediaWiki 1.36.x < 1.36.3 Multiple Vulnerabilities
According to its self-reported version number, the instance of MediaWiki hosted on the remote web server is prior to 1.35.5, 1.36.x prior to 1.36.3 or 1.37 prior to 1.37.1, It is, therefore, affected by a number of vulnerabilities as follows. - A vulnerability in the date validation functions of...
MediaWiki < 1.35.5 Multiple Vulnerabilities
According to its self-reported version number, the instance of MediaWiki hosted on the remote web server is prior to 1.35.5, 1.36.x prior to 1.36.3 or 1.37 prior to 1.37.1, It is, therefore, affected by a number of vulnerabilities as follows. - A vulnerability in the date validation functions of...
CVE-2021-46146
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. The WikibaseMediaInfo component is vulnerable to XSS via the caption fields for a given media file...
MediaWiki WikibaseMediaInfo Cross-Site Scripting Vulnerability (CNVD-2022-03945)
MediaWiki is a free and free-to-use web-based wiki engine from the U.S. Wikimedia MediaWiki Foundation. The product can be used to deploy internal knowledge management and content management systems.A cross-site scripting vulnerability exists in MediaWiki, which stems from a failure of the...
CVE-2021-46146
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. The WikibaseMediaInfo component is vulnerable to XSS via the caption fields for a given media file...
CVE-2021-46146
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. The WikibaseMediaInfo component is vulnerable to XSS via the caption fields for a given media file...
Cross site scripting
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. The WikibaseMediaInfo component is vulnerable to XSS via the caption fields for a given media file...
MediaWiki 跨站脚本漏洞
MediaWiki is a free and free-to-use web-based wiki engine from the U.S. Wikimedia MediaWiki Foundation. The product can be used to deploy internal knowledge management and content management systems.A cross-site scripting vulnerability exists in MediaWiki, which stems from a failure of the...
CVE-2021-46146
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. The WikibaseMediaInfo component is vulnerable to XSS via the caption fields for a given media file...
CVE-2021-46146
MediaWiki (WikibaseMediaInfo) is affected by an XSS vulnerability in caption handling for media files. Affected versions are MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. The issue is due to WikibaseMediaInfo processing caption fields insecurely, enabling XSS. No exploi...
CVE-2020-6163
The WikibaseMediaInfo extension 1.35 for MediaWiki allows XSS because of improper template syntax within the PropertySuggestionsWidget template in the templates/search/PropertySuggestionsWidget.mustache+dom file...
CVE-2020-6163
The WikibaseMediaInfo extension 1.35 for MediaWiki allows XSS because of improper template syntax within the PropertySuggestionsWidget template in the templates/search/PropertySuggestionsWidget.mustache+dom file...
Cross site scripting
The WikibaseMediaInfo extension 1.35 for MediaWiki allows XSS because of improper template syntax within the PropertySuggestionsWidget template in the templates/search/PropertySuggestionsWidget.mustache+dom file...