Lucene search
K

11 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2014-0157)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4CVSS9.6AI score0.0106EPSS
Exploits1References5
securityvulns
securityvulns
added 2014/05/10 12:0 a.m.63 views

[ MDVSA-2014:083 ] mediawiki

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:083 http://www.mandriva.com/en/support/security/ Package : mediawiki Date : May 8, 2014 Affected: Business Server 1.0 Problem Description: Updated mediawiki packages fix security vulnerabilities: Login CSRF...

4CVSS6.2AI score0.0106EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/05/09 12:0 a.m.26 views

Mandriva Linux Security Advisory : mediawiki (MDVSA-2014:083)

Updated mediawiki packages fix security vulnerabilities : Login CSRF issue in MediaWiki before 1.22.5 in Special:ChangePassword, whereby a user can be logged into an attackers account without being aware of it, allowing the attacker to track the user's activity CVE-2014-2665. XSS vulnerability in...

4CVSS8.1AI score0.0106EPSS
Exploits1References3
OSV
OSV
added 2014/04/20 1:55 a.m.6 views

CVE-2014-2665

includes/specials/SpecialChangePassword.php in MediaWiki before 1.19.14, 1.20.x and 1.21.x before 1.21.8, and 1.22.x before 1.22.5 does not properly handle a correctly authenticated but unintended login attempt, which makes it easier for remote authenticated users to obtain sensitive information ...

7AI score
Exploits0References6
CVE
CVE
added 2014/04/20 1:0 a.m.75 views

CVE-2014-2665

CVE-2014-2665 affects MediaWiki; vulnerable are builds with includes/specials/SpecialChangePassword.php prior to specific fixes. The issue arises when an authenticated user makes a login attempt that can be exploited to have a victim log in to the attacker’s account, enabling the attacker to trac...

4CVSS5.8AI score0.0106EPSS
Exploits1References5Affected Software1
OpenVAS
OpenVAS
added 2014/04/10 12:0 a.m.34 views

Fedora Update for mediawiki FEDORA-2014-4478

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.42777EPSS
Exploits13References2
OpenVAS
OpenVAS
added 2014/04/10 12:0 a.m.33 views

Fedora Update for mediawiki FEDORA-2014-4511

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.42777EPSS
Exploits13References2
Tenable Nessus
Tenable Nessus
added 2014/04/09 12:0 a.m.31 views

Fedora 20 : mediawiki-1.21.8-1.fc20 (2014-4478)

bug 62497 SECURITY: Add CSRF token on Special:ChangePassword. - bug 62467 Set a title for the context during import on the cli. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean...

4CVSS8.2AI score0.0106EPSS
Exploits1References3
seebug.org
seebug.org
added 2014/04/08 12:0 a.m.27 views

MediaWiki 'Special:ChangePassword'跨站请求伪造漏洞

Bugtraq ID:66600 CVE ID:CVE-2014-2665 MediaWiki是一款Wiki程序。 MediaWiki 'Special:ChangePassword'存在跨站请求伪造漏洞,允许远程攻击者构建恶意URI,诱使用户解析,可以目标用户上下文执行恶意操作。 0 MediaWiki 1.22.5 目前厂商已经发布了升级补丁以修复漏洞,请下载使用: https://bugzilla.wikimedia.org/showbug.cgi?id=62497...

4CVSS0.2AI score0.0106EPSS
Exploits1
Mageia
Mageia
added 2014/04/03 1:29 p.m.38 views

Updated mediawiki packages fix CVE-2014-2665

Updated mediawiki packages fix security vulnerability: Login CSRF issue in MediaWiki before 1.22.5 in Special:ChangePassword, whereby a user can be logged into an attackers account without being aware of it, allowing the attacker to track the user's activity CVE-2014-2665. MediaWiki has been...

4CVSS7.7AI score0.0106EPSS
Exploits1References3
OSV
OSV
added 2014/04/03 1:29 p.m.6 views

MGASA-2014-0157 Updated mediawiki packages fix CVE-2014-2665

Updated mediawiki packages fix security vulnerability: Login CSRF issue in MediaWiki before 1.22.5 in Special:ChangePassword, whereby a user can be logged into an attackers account without being aware of it, allowing the attacker to track the user's activity CVE-2014-2665. MediaWiki has been...

4CVSS7.5AI score0.0106EPSS
Exploits1References4
Rows per page
Query Builder