Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:20 a.m.5 views

SUSE CVE-2015-2935

MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 allows remote attackers to bypass the SVG filtering and obtain sensitive user information via a mixed case @import in a style element in an SVG file, as demonstrated by "@imporT."...

5CVSS6.3AI score0.02451EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/06/12 12:0 a.m.29 views

MediaWiki < 1.19.24 / 1.23.9 / 1.24.2 Multiple Vulnerabilities

According to its version number, the MediaWiki application running on the remote host is affected by the following vulnerabilities : - An input validation error exists related to handling API errors that allows reflected cross-site scripting attacks. CVE-2014-9714, CVE-2015-2941 - An input...

7.1CVSS8.4AI score0.02834EPSS
Exploits4References18
securityvulns
securityvulns
added 2015/05/12 12:0 a.m.92 views

[ MDVSA-2015:200 ] mediawiki

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:200 http://www.mandriva.com/en/support/security/ Package : mediawiki Date : April 10, 2015 Affected: Business Server 1.0 Problem Description: Updated mediawiki packages fix security vulnerabilities: In...

7.1CVSS5.7AI score0.0271EPSS
Exploits1
OSV
OSV
added 2015/04/13 2:59 p.m.6 views

CVE-2015-2935

MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 allows remote attackers to bypass the SVG filtering and obtain sensitive user information via a mixed case @import in a style element in an SVG file, as demonstrated by "@imporT."...

6.1AI score
Exploits0References8
UbuntuCve
UbuntuCve
added 2015/04/13 2:59 p.m.31 views

CVE-2015-2935

MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 allows remote attackers to bypass the SVG filtering and obtain sensitive user information via a mixed case @import in a style element in an SVG file, as demonstrated by "@imporT."...

5CVSS5.9AI score0.02451EPSS
Exploits0References3
CVE
CVE
added 2015/04/13 2:0 p.m.66 views

CVE-2015-2935

CVE-2015-2935 affects MediaWiki: an SVG filtering bypass via a mixed-case “@import” in a style element of an SVG file can leak sensitive user information. Affected: MediaWiki versions before 1.19.24; 1.2x before 1.23.9; 1.24.x before 1.24.2. Remediation (per advisories): upgrade to the latest Med...

5CVSS6.1AI score0.02451EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2015/04/13 2:0 p.m.19 views

CVE-2015-2935

MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 allows remote attackers to bypass the SVG filtering and obtain sensitive user information via a mixed case @import in a style element in an SVG file, as demonstrated by "@imporT."...

5CVSS6AI score0.02451EPSS
Exploits0
Rows per page
Query Builder