8 matches found
CVE-2004-2186
SQL injection vulnerability in MediaWiki 1.3.5 allows remote attackers to execute arbitrary SQL commands via SpecialMaintenance...
CVE-2004-2185
Multiple cross-site scripting XSS vulnerabilities in MediaWiki 1.3.5 allow remote attackers to execute arbitrary scripts and/or SQL queries via 1 the UnicodeConverter extension, 2 raw page views, 3 SpecialIpblocklist, 4 SpecialEmailuser, 5 SpecialMaintenance, and 6 ImagePage...
CVE-2004-2185
Multiple cross-site scripting XSS vulnerabilities in MediaWiki 1.3.5 allow remote attackers to execute arbitrary scripts and/or SQL queries via 1 the UnicodeConverter extension, 2 raw page views, 3 SpecialIpblocklist, 4 SpecialEmailuser, 5 SpecialMaintenance, and 6 ImagePage...
CVE-2004-2186
CVE-2004-2186 affects MediaWiki 1.3.5 and is a SQL injection vulnerability that allows remote attackers to execute arbitrary SQL commands via the SpecialMaintenance endpoint. The vulnerability is network-exploitable with low attack complexity and no authentication, with partial confidentiality, i...
CVE-2004-2185
MediaWiki 1.3.5 is affected by multiple XSS vulnerabilities affecting the UnicodeConverter extension, raw page views, SpecialIpblocklist, SpecialEmailuser, SpecialMaintenance, and ImagePage. The connected documents confirm the flaws but do not provide explicit remediation steps or fixed versions....
CVE-2004-2186
SQL injection vulnerability in MediaWiki 1.3.5 allows remote attackers to execute arbitrary SQL commands via SpecialMaintenance...
CVE-2004-2187
Unknown vulnerability in ImagePage for MediaWiki 1.3.5, related to "filename validation," has unknown impact and attack vectors...
DEBIAN-CVE-2004-2186
SQL injection vulnerability in MediaWiki 1.3.5 allows remote attackers to execute arbitrary SQL commands via SpecialMaintenance...