Lucene search
K

9 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2014-0506)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.01965EPSS
Exploits1References5
CVE
CVE
added 2015/01/04 9:0 p.m.82 views

CVE-2014-9277

CVE-2014-9277 affects MediaWiki: The wfMangleFlashPolicy function in OutputHandler.php allows remote PHP object injection via a crafted request containing , affecting MediaWiki versions pre-1.19.22, 1.20.x up to pre-1.22.14, and pre-1.23.7. Impact is PHP object injection; remediation is upgrading...

7.5CVSS6.2AI score0.01965EPSS
Exploits1References6Affected Software1
Debian CVE
Debian CVE
added 2015/01/04 9:0 p.m.22 views

CVE-2014-9277

The wfMangleFlashPolicy function in OutputHandler.php in MediaWiki before 1.19.22, 1.20.x through 1.22.x before 1.22.14, and 1.23.x before 1.23.7 allows remote attackers to conduct PHP object injection attacks via a crafted string containing in a PHP format request, which causes the string length...

7.5CVSS9AI score0.01965EPSS
Exploits1
securityvulns
securityvulns
added 2014/12/22 12:0 a.m.89 views

[SECURITY] [DSA 3100-1] mediawiki security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3100-1 [email protected] http://www.debian.org/security/ Sebastien Delafond December 12, 2014 http://www.debian.org/security/faq -...

7.5CVSS0.7AI score0.01965EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/12/15 12:0 a.m.34 views

Mandriva Linux Security Advisory : mediawiki (MDVSA-2014:241)

Updated mediawiki packages fix security vulnerabilies : In MediaWiki before 1.23.7, a missing CSRF check could allow reflected XSS on wikis that allow raw HTML CVE-2014-9276. MediaWiki's mangling, in MediaWiki before 1.23.7, could allow an article editor to inject code into API consumers that...

7.5CVSS8.4AI score0.01965EPSS
Exploits1References3
Debian
Debian
added 2014/12/13 10:42 a.m.29 views

[SECURITY] [DSA 3100-1] mediawiki security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3100-1 [email protected] http://www.debian.org/security/ Sebastien Delafond December 12, 2014 http://www.debian.org/security/faq -...

7.5CVSS1.1AI score0.01965EPSS
Exploits1
Debian
Debian
added 2014/12/13 10:42 a.m.29 views

[SECURITY] [DSA 3100-1] mediawiki security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3100-1 [email protected] http://www.debian.org/security/ Sebastien Delafond December 12, 2014 http://www.debian.org/security/faq -...

7.5CVSS5.9AI score0.01965EPSS
Exploits1
OpenVAS
OpenVAS
added 2014/12/11 12:0 a.m.23 views

Debian: Security Advisory (DSA-3100-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.5AI score0.01965EPSS
Exploits1References3
Mageia
Mageia
added 2014/12/03 7:27 p.m.47 views

Updated mediawiki packages fix security vulnerabilies

In MediaWiki before 1.23.7, a missing CSRF check could allow reflected XSS on wikis that allow raw HTML CVE-2014-9276. MediaWiki's mangling, in MediaWiki before 1.23.7, could allow an article editor to inject code into API consumers that blindly unserialize PHP representations of the page from th...

7.5CVSS9.1AI score0.01965EPSS
Exploits1References3
Rows per page
Query Builder