Gentoo Security Advisory GLSA 201206-09 (MediaWiki)

The remote host is missing updates announced in advisory GLSA 201206-09. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Fedora Update for mediawiki FEDORA-2011-5807

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

MediaWiki CSS Comments XSS

There is a cross-site scripting vulnerability in this installation of MediaWiki that may allow an attacker to execute arbitrary script code in the browser of an unsuspecting user. Such script code could steal authentication credentials and be used to launch other attacks. This version of MediaWik...

CVE-2011-0047

CVE-2011-0047 is a cross-site scripting (XSS) vulnerability in MediaWiki prior to 1.16.2, exploitable by remote attackers via crafted CSS comments to inject script/HTML. Affected component: MediaWiki core; root cause: improper handling of CSS comment content leading to HTML/JS injection; impact: ...

CVE-2011-0047

Cross-site scripting XSS vulnerability in MediaWiki before 1.16.2 allows remote attackers to inject arbitrary web script or HTML via crafted Cascading Style Sheets CSS comments, aka "CSS injection vulnerability."...