4 matches found
FreeBSD Ports: mediawiki
The remote host is missing an update to the system as announced in the referenced advisory. VID 694da5b4-5877-11df-8d80-0015587e2cc1 OpenVAS Vulnerability Test $ Description: Auto generated from VID 694da5b4-5877-11df-8d80-0015587e2cc1 Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...
[SECURITY] [DSA-2041-1] New mediawiki packages fix cross-site request forgery
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2041-1 [email protected] http://www.debian.org/security/ Raphael Geissert May 03, 2010 http://www.debian.org/security/faq -...
CVE-2010-1150
MediaWiki before 1.15.3, and 1.6.x before 1.16.0beta2, does not properly handle a correctly authenticated but unintended login attempt, which makes it easier for remote authenticated users to conduct phishing attacks by arranging for a victim to login to the attacker's account and then execute a...
CVE-2010-1150
MediaWiki is affected by a login CSRF vulnerability (CVE-2010-1150). A correctly authenticated, unintended login attempt can be exploited to induce a victim to log in to the attacker’s account and run a crafted user script, enabling phishing-style attacks. The issue affects MediaWiki versions pri...