Lucene search
K

11 matches found

Debian
Debian
added 2020/12/23 1:38 a.m.75 views

[SECURITY] [DLA 2504-1] mediawiki security update

Debian LTS Advisory DLA-2504-1 [email protected] https://www.debian.org/lts/security/ Roberto C. Sánchez December 22, 2020 https://wiki.debian.org/LTS Package : mediawiki Version : 1:1.27.7-1deb9u7 CVE ID : CVE-2020-15005 CVE-2020-35477 CVE-2020-35479 CVE-2020-35480 Multiple security...

6.1CVSS6.3AI score0.01516EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2020/12/23 12:0 a.m.41 views

Debian DLA-2504-1 : mediawiki security update

Multiple security issues were discovered in MediaWiki, a website engine for collaborative work. CVE-2020-15005 Private wikis behind a caching server using the imgauth.php image authorization security feature may have had their files cached publicly, so any unauthorized user could view them...

6.1CVSS5.9AI score0.01516EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2020/12/23 12:0 a.m.22 views

Debian: Security Advisory (DLA-2504-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS5.8AI score0.01516EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2020/09/28 12:0 a.m.28 views

Debian DSA-4767-1 : mediawiki - security update

Multiple security issues were discovered in MediaWiki, a website engine for collaborative work: SpecialUserRights could leak whether a user existed or not, multiple code paths lacked HTML sanitisation allowing for cross-site scripting and TOTP validation applied insufficient rate limiting against...

7.5CVSS5.9AI score0.01752EPSS
Exploits1References10
OpenVAS
OpenVAS
added 2020/09/27 12:0 a.m.18 views

Debian: Security Advisory (DSA-4767-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6AI score0.04098EPSS
Exploits1References4
Debian
Debian
added 2020/09/25 5:43 p.m.48 views

[SECURITY] [DSA 4767-1] mediawiki security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4767-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 25, 2020 https://www.debian.org/security/faq -...

7.5CVSS6.9AI score0.01752EPSS
Exploits1
ALT Linux
ALT Linux
added 2020/08/01 12:0 a.m.28 views

Security fix for the ALT Linux 9 package mediawiki version 1.34.2-alt1

Aug. 1, 2020 Vitaly Lipatov 1.34.2-alt1 - new version 1.34.2 with rpmrb script - CVE-2020-15005...

2.6CVSS4.8AI score0.01302EPSS
Exploits0
Mageia
Mageia
added 2020/07/10 3:40 p.m.31 views

Updated mediawiki packages fix security vulnerability

Updated mediawiki packages fix security vulnerability: In MediaWiki before 1.31.8, private wikis behind a caching server using the imgauth.php image authorization security feature may have had their files cached publicly, so any unauthorized user could view them. This occurs because Cache-Control...

3.1CVSS2.8AI score0.01302EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/07/05 12:0 a.m.18 views

Fedora: Security Advisory for mediawiki (FEDORA-2020-9c97633708)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

3.1CVSS4.3AI score0.01302EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/06/29 12:0 a.m.39 views

MediaWiki Information Disclosure Vulnerability (Jun 2020) - Windows

MediaWiki is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

3.1CVSS3.9AI score0.01302EPSS
Exploits0References1
CVE
CVE
added 2020/06/24 10:7 p.m.110 views

CVE-2020-15005

CVE-2020-15005 affects MediaWiki before 1.31.8, 1.32.x, 1.33.x before 1.33.4, and 1.34.x before 1.34.2. The root cause is mishandling of Cache-Control and Vary headers on private wikis behind a caching proxy using the img_auth.php image authorization feature, allowing public caches to store and s...

3.1CVSS4AI score0.01302EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder