Lucene search
K

4 matches found

UbuntuCve
UbuntuCve
added 2015/01/16 4:59 p.m.20 views

CVE-2014-9475

Cross-site scripting XSS vulnerability in thumb.php in MediaWiki before 1.19.23, 1.2x before 1.22.15, 1.23.x before 1.23.8, and 1.24.x before 1.24.1 allows remote authenticated users to inject arbitrary web script or HTML via a wikitext message...

3.5CVSS7.3AI score0.01449EPSS
Exploits0References2
CVE
CVE
added 2015/01/16 4:0 p.m.58 views

CVE-2014-9475

CVE-2014-9475 is an XSS in MediaWiki's thumb.php allowing remote authenticated users to inject arbitrary script/HTML via a wikitext message. Affected are MediaWiki versions: before 1.19.23, 1.2x before 1.22.15, 1.23.x before 1.23.8, and 1.24.x before 1.24.1. Connected sources corroborate these af...

3.5CVSS5.7AI score0.01449EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2015/01/16 4:0 p.m.25 views

CVE-2014-9475

Cross-site scripting XSS vulnerability in thumb.php in MediaWiki before 1.19.23, 1.2x before 1.22.15, 1.23.x before 1.23.8, and 1.24.x before 1.24.1 allows remote authenticated users to inject arbitrary web script or HTML via a wikitext message...

3.5CVSS7.7AI score0.01449EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/12/26 12:0 a.m.24 views

Debian DSA-3110-1 : mediawiki - security update

A flaw was discovered in mediawiki, a wiki engine: thumb.php outputs wikitext messages as raw HTML, potentially leading to cross-site scripting XSS. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...

3.5CVSS8.2AI score0.01449EPSS
Exploits0References4
Rows per page
Query Builder