Lucene search
K

40 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:4 a.m.9 views

CVE-2023-37305

An issue was discovered in the ProofreadPage aka Proofread Page extension for MediaWiki through 1.39.3. In includes/Page/PageContentHandler.php and includes/Page/PageDisplayHandler.php, hidden users can be exposed via public interfaces...

5.3CVSS6.9AI score0.00614EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2024/04/09 12:0 a.m.11 views

The vulnerability of the ProofreadPage extension, a software tool for implementing a hypertext environment like MediaWiki, allows a hacker to carry out cross-site scripting attacks.

The vulnerability of the ProofreadPage extension, a software tool for implementing the MediaWiki hypertext environment, exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attac...

6.4CVSS6AI score0.0032EPSS
Exploits0References4Affected Software2
OSV
OSV
added 2024/03/06 10:59 a.m.18 views

BIT-MEDIAWIKI-2023-37305

An issue was discovered in the ProofreadPage aka Proofread Page extension for MediaWiki through 1.39.3. In includes/Page/PageContentHandler.php and includes/Page/PageDisplayHandler.php, hidden users can be exposed via public interfaces...

5.3CVSS5.2AI score0.00614EPSS
Exploits1References3
OSV
OSV
added 2024/03/06 10:57 a.m.22 views

BIT-MEDIAWIKI-2023-45373

An issue was discovered in the ProofreadPage extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. XSS can occur via formatNumNoSeparators...

6.1CVSS6.1AI score0.0032EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2023/10/09 6:15 a.m.5 views

CVE-2023-45373

An issue was discovered in the ProofreadPage extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. XSS can occur via formatNumNoSeparators...

6.1CVSS6.4AI score0.0032EPSS
Exploits0References3
NVD
NVD
added 2023/10/09 6:15 a.m.30 views

CVE-2023-45373

An issue was discovered in the ProofreadPage extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. XSS can occur via formatNumNoSeparators...

6.1CVSS6.1AI score0.0032EPSS
Exploits0References2
Prion
Prion
added 2023/10/09 6:15 a.m.21 views

Design/Logic Flaw

An issue was discovered in the ProofreadPage extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. XSS can occur via formatNumNoSeparators...

5.8CVSS6AI score0.0032EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/10/09 12:0 a.m.6 views

MediaWiki Cross-Site Scripting Vulnerability

MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. The product can be used to deploy internal knowledge management and content management systems. A security vulnerability exists in MediaWiki, which stems from a cross-site scripting attack by t...

6.1CVSS6.2AI score0.0032EPSS
Exploits0References3
CVE
CVE
added 2023/10/09 12:0 a.m.67 views

CVE-2023-45373

The CVE-2023-45373 entry concerns the ProofreadPage extension for MediaWiki. It describes an XSS vulnerability that can be triggered via formatNumNoSeparators in affected versions: MediaWiki ProofreadPage extension before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. The...

6.1CVSS6.1AI score0.0032EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/09 12:0 a.m.12 views

CVE-2023-45373

An issue was discovered in the ProofreadPage extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. XSS can occur via formatNumNoSeparators...

6.3AI score0.0032EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/10/08 12:0 a.m.6 views

PT-2023-8946 · Mediawiki +2 · Mediawiki Proofreadpage Extension +2

Name of the Vulnerable Software and Affected Versions: MediaWiki ProofreadPage extension versions prior to 1.35.12 MediaWiki ProofreadPage extension versions 1.36.x through 1.39.x before 1.39.5 MediaWiki ProofreadPage extension versions 1.40.x before 1.40.1 Description: The issue exists due to a...

9.8CVSS5.9AI score0.22699EPSS
Exploits27References108
NVD
NVD
added 2023/06/30 5:15 p.m.30 views

CVE-2023-37305

An issue was discovered in the ProofreadPage aka Proofread Page extension for MediaWiki through 1.39.3. In includes/Page/PageContentHandler.php and includes/Page/PageDisplayHandler.php, hidden users can be exposed via public interfaces...

5.3CVSS5.3AI score0.00614EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/06/30 5:15 p.m.5 views

CVE-2023-37305

An issue was discovered in the ProofreadPage aka Proofread Page extension for MediaWiki through 1.39.3. In includes/Page/PageContentHandler.php and includes/Page/PageDisplayHandler.php, hidden users can be exposed via public interfaces...

5.3CVSS6AI score0.00614EPSS
Exploits1References3
Prion
Prion
added 2023/06/30 5:15 p.m.26 views

Code injection

An issue was discovered in the ProofreadPage aka Proofread Page extension for MediaWiki through 1.39.3. In includes/Page/PageContentHandler.php and includes/Page/PageDisplayHandler.php, hidden users can be exposed via public interfaces...

5CVSS5.3AI score0.00614EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/06/30 12:0 a.m.30 views

CVE-2023-37305

An issue was discovered in the ProofreadPage aka Proofread Page extension for MediaWiki through 1.39.3. In includes/Page/PageContentHandler.php and includes/Page/PageDisplayHandler.php, hidden users can be exposed via public interfaces...

5.5AI score0.00614EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2023/06/30 12:0 a.m.24 views

CVE-2023-37305

An issue was discovered in the ProofreadPage aka Proofread Page extension for MediaWiki through 1.39.3. In includes/Page/PageContentHandler.php and includes/Page/PageDisplayHandler.php, hidden users can be exposed via public interfaces...

5.3CVSS6AI score0.00614EPSS
Exploits1References3
CVE
CVE
added 2023/06/30 12:0 a.m.51 views

CVE-2023-37305

CVE-2023-37305 affects the MediaWiki ProofreadPage extension (up to version 1.39.3). The issue lies in includes/Page/PageContentHandler.php and includes/Page/PageDisplayHandler.php , where hidden users can be exposed via public interfaces. This is a confidentiality-related exposure described as p...

5.3CVSS5.2AI score0.00614EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2023/06/30 12:0 a.m.19 views

CVE-2023-37305

An issue was discovered in the ProofreadPage aka Proofread Page extension for MediaWiki through 1.39.3. In includes/Page/PageContentHandler.php and includes/Page/PageDisplayHandler.php, hidden users can be exposed via public interfaces...

5.3CVSS7.1AI score0.00614EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/06/30 12:0 a.m.9 views

CVE-2023-37305

An issue was discovered in the ProofreadPage aka Proofread Page extension for MediaWiki through 1.39.3. In includes/Page/PageContentHandler.php and includes/Page/PageDisplayHandler.php, hidden users can be exposed via public interfaces...

7.2AI score0.00614EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/06/30 12:0 a.m.4 views

PT-2023-25896 · Mediawiki +1 · Mediawiki Proofreadpage Extension +1

Name of the Vulnerable Software and Affected Versions: MediaWiki ProofreadPage extension versions through 1.39.3 Description: An issue in the ProofreadPage extension for MediaWiki allows hidden users to be exposed via public interfaces, specifically in the includes/Page/PageContentHandler.php and...

9.8CVSS6.2AI score0.22699EPSS
Exploits27References105
Rows per page
Query Builder