Lucene search
K

9 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2014-0506)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.01965EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2016/08/05 12:0 a.m.30 views

MediaWiki < 1.23.7 Multiple Vulnerabilities

Binary data 9476.prm...

7.5CVSS6.5AI score0.01965EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2015/01/23 12:0 a.m.29 views

MediaWiki ExpandTemplates Extension < 1.24.1 Multiple Vulnerabilities (Jan 2015) - Active Check

The ExpandTemplates extension for MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.1CVSS6.3AI score0.00669EPSS
Exploits0References2
NVD
NVD
added 2015/01/04 9:59 p.m.22 views

CVE-2014-9276

Cross-site request forgery CSRF vulnerability in the Special:ExpandedTemplates page in MediaWiki before 1.19.22, 1.20.x through 1.22.x before 1.22.14, and 1.23.x before 1.23.7, when $wgRawHTML is set to true, allows remote attackers to hijack the authentication of users with edit permissions for...

5.1CVSS6.2AI score0.00669EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2015/01/04 9:59 p.m.32 views

CVE-2014-9276

Cross-site request forgery CSRF vulnerability in the Special:ExpandedTemplates page in MediaWiki before 1.19.22, 1.20.x through 1.22.x before 1.22.14, and 1.23.x before 1.23.7, when $wgRawHTML is set to true, allows remote attackers to hijack the authentication of users with edit permissions for...

5.1CVSS7.2AI score0.00669EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2015/01/04 9:0 p.m.35 views

CVE-2014-9276

Cross-site request forgery CSRF vulnerability in the Special:ExpandedTemplates page in MediaWiki before 1.19.22, 1.20.x through 1.22.x before 1.22.14, and 1.23.x before 1.23.7, when $wgRawHTML is set to true, allows remote attackers to hijack the authentication of users with edit permissions for...

5.1CVSS8.5AI score0.00669EPSS
Exploits0
CVE
CVE
added 2015/01/04 9:0 p.m.58 views

CVE-2014-9276

CVE-2014-9276 is a CSRF vulnerability in the MediaWiki ExpandTemplates/related areas that affects 1.23.x before 1.23.7 and 1.22.x before 1.22.14, 1.20.x and earlier up to 1.19.22, when $wgRawHTML is true. The issue allows remote attackers to hijack the authentication of users with edit permission...

5.1CVSS6.3AI score0.00669EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/12/15 12:0 a.m.34 views

Mandriva Linux Security Advisory : mediawiki (MDVSA-2014:241)

Updated mediawiki packages fix security vulnerabilies : In MediaWiki before 1.23.7, a missing CSRF check could allow reflected XSS on wikis that allow raw HTML CVE-2014-9276. MediaWiki's mangling, in MediaWiki before 1.23.7, could allow an article editor to inject code into API consumers that...

7.5CVSS8.4AI score0.01965EPSS
Exploits1References3
Mageia
Mageia
added 2014/12/03 7:27 p.m.47 views

Updated mediawiki packages fix security vulnerabilies

In MediaWiki before 1.23.7, a missing CSRF check could allow reflected XSS on wikis that allow raw HTML CVE-2014-9276. MediaWiki's mangling, in MediaWiki before 1.23.7, could allow an article editor to inject code into API consumers that blindly unserialize PHP representations of the page from th...

7.5CVSS9.1AI score0.01965EPSS
Exploits1References3
Rows per page
Query Builder