Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-25828

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4. The non- jqueryMsg version of mw.message.parse doesn't escape HTML...

6.1CVSS6.7AI score0.01089EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2020-0381)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.1AI score0.01752EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2020/12/14 12:0 a.m.38 views

Fedora 33 : mediawiki / php-oojs-oojs-ui / php-wikimedia-assert / etc (2020-a4802c53d9)

https://lists.wikimedia.org/pipermail/mediawiki-announce/2020-Septembe r/000263.html The 1.34.x series is now end-of-life and the 1.35.x series is a LTS release. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenabl...

7.5CVSS6.4AI score0.01752EPSS
Exploits2References10
OpenVAS
OpenVAS
added 2020/12/14 12:0 a.m.18 views

Fedora: Security Advisory for mediawiki (FEDORA-2020-a4802c53d9)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.01752EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2020/12/14 12:0 a.m.20 views

Fedora: Security Advisory for php-zordius-lightncandy (FEDORA-2020-a4802c53d9)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.01752EPSS
Exploits2References2
ALT Linux
ALT Linux
added 2020/10/14 12:0 a.m.25 views

Security fix for the ALT Linux 9 package mediawiki version 1.35.0-alt1

1.35.0-alt1 built Oct. 14, 2020 Vitaly Lipatov in task 259569 Oct. 9, 2020 Vitaly Lipatov - new version 1.35.0 LTS with rpmrb script - CVE-2020-25813, CVE-2020-25812, CVE-2020-25815 - CVE-2020-17367, CVE-2020-17368, CVE-2020-25814 - CVE-2020-25828, CVE-2020-25869, CVE-2020-25827...

7.5CVSS6.6AI score0.04098EPSS
Exploits1
Mageia
Mageia
added 2020/09/30 10:1 a.m.60 views

Updated mediawiki packages fix security vulnerability

Multiple security issues were discovered in MediaWiki: SpecialUserRights could leak whether a user existed or not, multiple code paths lacked HTML sanitisation allowing for cross-site scripting and TOTP validation applied insufficient rate limiting against brute force attempts CVE-2020-25812,...

7.5CVSS0.9AI score0.01752EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2020/09/30 12:0 a.m.22 views

MediaWiki Multiple Vulnerabilities (Sep 2020) - Windows

MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mediawiki:mediawiki"; ifdescripti...

9.8CVSS7AI score0.04098EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2020/09/30 12:0 a.m.20 views

MediaWiki Multiple Vulnerabilities (Sep 2020) - Linux

MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mediawiki:mediawiki"; ifdescripti...

9.8CVSS7AI score0.04098EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2020/09/28 12:0 a.m.28 views

Debian DSA-4767-1 : mediawiki - security update

Multiple security issues were discovered in MediaWiki, a website engine for collaborative work: SpecialUserRights could leak whether a user existed or not, multiple code paths lacked HTML sanitisation allowing for cross-site scripting and TOTP validation applied insufficient rate limiting against...

7.5CVSS5.9AI score0.01752EPSS
Exploits1References10
CVE
CVE
added 2020/09/27 8:31 p.m.96 views

CVE-2020-25828

MediaWiki

6.1CVSS6.5AI score0.01089EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2020/09/27 8:31 p.m.28 views

CVE-2020-25828

An issue was discovered in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4. The non-jqueryMsg version of mw.message.parse doesn't escape HTML. This affects both message contents which are generally safe and the parameters which can be based on user input. When jqueryMsg is loaded...

6.1CVSS6.5AI score0.01089EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/09/27 12:0 a.m.18 views

Debian: Security Advisory (DSA-4767-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6AI score0.04098EPSS
Exploits1References4
Debian
Debian
added 2020/09/26 1:26 a.m.58 views

[SECURITY] [DLA 2379-1] mediawiki security update

Debian LTS Advisory DLA-2379-1 [email protected] https://www.debian.org/lts/security/ Roberto C. Sánchez September 25, 2020 https://wiki.debian.org/LTS Package : mediawiki Version : 1:1.27.7-1deb9u4 CVE ID : CVE-2020-25813 CVE-2020-25814 CVE-2020-25827 CVE-2020-25828 Multiple security...

7.5CVSS6.6AI score0.01752EPSS
Exploits1
Rows per page
Query Builder