Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2015/01/23 12:0 a.m.29 views

MediaWiki ExpandTemplates Extension < 1.24.1 Multiple Vulnerabilities (Jan 2015) - Active Check

The ExpandTemplates extension for MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.1CVSS6.3AI score0.00669EPSS
Exploits0References2
NVD
NVD
added 2015/01/16 4:59 p.m.23 views

CVE-2014-9478

Cross-site scripting XSS vulnerability in the preview in the ExpandTemplates extension for MediaWiki, when $wgRawHTML is set to true, allows remote attackers to inject arbitrary web script or HTML via the wpInput parameter to the Special:ExpandTemplates page...

2.6CVSS5.7AI score0.012EPSS
Exploits1References4
CVE
CVE
added 2015/01/16 4:0 p.m.53 views

CVE-2014-9478

CVE-2014-9478 affects the MediaWiki ExpandTemplates extension. The vulnerability is a cross-site scripting (XSS) flaw in the preview mode when $wgRawHTML is true, allowing remote attackers to inject arbitrary script/HTML via the wpInput parameter on Special:ExpandTemplates. OpenVAS notes this as ...

2.6CVSS6AI score0.012EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2015/01/16 4:0 p.m.23 views

CVE-2014-9478

Cross-site scripting XSS vulnerability in the preview in the ExpandTemplates extension for MediaWiki, when $wgRawHTML is set to true, allows remote attackers to inject arbitrary web script or HTML via the wpInput parameter to the Special:ExpandTemplates page...

6.1AI score0.012EPSS
Exploits1References4
Rows per page
Query Builder