CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Multiple cross-site request forgery CSRF vulnerabilities in the 1 CreateProperty, 2 CreateTemplate, 3 CreateForm, and 4 CreateClass special pages in the SemanticForms extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allow remote attackers to hijack the...

6.8CVSS8AI score0.00108EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 3:34 a.m.•5 views

CVE-2014-3454

Cross-site request forgery CSRF vulnerability in Special:CreateCategory in the SemanticForms extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to hijack the authentication of users for requests that create categories via unspecified vecto...

6.8CVSS7.5AI score0.00157EPSS

Exploits0References1

CNVD•added 2015/09/06 12:0 a.m.•1 views

MediaWiki SemanticForms Extended Cross-Site Scripting Vulnerability (CNVD-2015-05872 (CNVD-C-2015-47230))

MediaWiki is the United States Wikimedia Wikimedia Foundation and MediaWiki volunteers to develop and maintain a set of free and free Web-based Wiki engine , it can be used to deploy internal knowledge management and content management system . SemanticForms is one of the extensions used to creat...

4.3CVSS6.1AI score0.00475EPSS

Exploits0References1

CNVD•added 2015/09/06 12:0 a.m.•1 views

MediaWiki SemanticForms extension cross-site scripting vulnerability (CNVD-2015-05873)

4.3CVSS6.2AI score0.0065EPSS

Exploits0References1

NVD•added 2015/09/01 2:59 p.m.•9 views

CVE-2015-6732

Multiple cross-site scripting XSS vulnerabilities in the SemanticForms extension for MediaWiki allow remote attackers to inject arbitrary web script or HTML via the 1 wpSummary parameter to Special:FormEdit, the 2 "Template label optional" field in a form, or a 3 Field name in a template...

4.3CVSS5.7AI score0.0065EPSS

Exploits0References9

NVD•added 2015/09/01 2:59 p.m.•11 views

CVE-2015-6731

Multiple cross-site scripting XSS vulnerabilities in the SemanticForms extension for MediaWiki allow remote attackers to inject arbitrary web script or HTML via a 1 section, 2 template, 3 label, or 4 newtemplate parameter to Special:CreateForm or 5 target or 6 altform parameter to Special:FormEdi...

4.3CVSS5.6AI score0.00475EPSS

Exploits0References7

Prion•added 2015/09/01 2:59 p.m.•11 views

Cross site scripting

4.3CVSS6AI score0.0065EPSS

Exploits0References9

UbuntuCve•added 2015/09/01 2:59 p.m.•15 views

CVE-2015-6731

4.3CVSS5.9AI score0.00475EPSS

Exploits0References5

Prion•added 2015/09/01 2:59 p.m.•11 views

Cross site scripting

4.3CVSS6AI score0.00475EPSS

Exploits0References7

Cvelist•added 2015/09/01 2:0 p.m.•12 views

CVE-2015-6732

5.7AI score0.0065EPSS

Exploits0References9

CVE•added 2015/09/01 2:0 p.m.•49 views

CVE-2015-6731

CVE-2015-6731 concerns the MediaWiki SemanticForms extension. The vulnerability is an XSS flaw in several parameters exposed by forms: section_, template_ , label_*, new_template (Special:CreateForm) and target, alt_form (Special:FormEdit). The root cause is inadequate input filtering in these pa...

4.3CVSS5.6AI score0.00475EPSS

Exploits0References7Affected Software1

Cvelist•added 2015/09/01 2:0 p.m.•15 views

CVE-2015-6731

5.5AI score0.00475EPSS

Exploits0References7

CVE•added 2015/09/01 2:0 p.m.•44 views

CVE-2015-6732

CVE-2015-6732 relates to multiple XSS vulnerabilities in the MediaWiki SemanticForms extension. The vulnerability allows remote attackers to inject arbitrary web script or HTML via (1) wpSummary on Special:FormEdit, (2) the Template label (optional) field, or (3) a Field name in a form/template. ...

4.3CVSS5.7AI score0.0065EPSS

Exploits0References9Affected Software1

NVD•added 2014/05/12 2:55 p.m.•11 views

CVE-2014-3455

6.8CVSS7.5AI score0.00108EPSS

Exploits0References2

NVD•added 2014/05/12 2:55 p.m.•12 views

CVE-2014-3454

6.8CVSS6.6AI score0.00157EPSS

Exploits0References2

Prion•added 2014/05/12 2:55 p.m.•11 views

Cross site request forgery (csrf)