6 matches found
Fedora 13 : mediawiki-1.15.4-54.fc13 (2010-10779)
This update fixes two vulnerabilities in mediawiki CVE-2010-1647 Cross-site scripting XSS vulnerability in MediaWiki 1.15 before 1.15.4 and 1.16 before 1.16 beta 3 allows remote attackers to inject arbitrary web script or HTML via crafted Cascading Style Sheets CSS strings that are processed as...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in the login interface in MediaWiki 1.15 before 1.15.4 and 1.16 before 1.16 beta 3 allows remote attackers to hijack the authentication of users for requests that 1 create accounts or 2 reset passwords, related to the Special:Userlogin form...
CVE-2010-1648
Cross-site request forgery CSRF vulnerability in the login interface in MediaWiki 1.15 before 1.15.4 and 1.16 before 1.16 beta 3 allows remote attackers to hijack the authentication of users for requests that 1 create accounts or 2 reset passwords, related to the Special:Userlogin form...
CVE-2010-1648
Cross-site request forgery CSRF vulnerability in the login interface in MediaWiki 1.15 before 1.15.4 and 1.16 before 1.16 beta 3 allows remote attackers to hijack the authentication of users for requests that 1 create accounts or 2 reset passwords, related to the Special:Userlogin form...
CVE-2010-1648
Cross-site request forgery CSRF vulnerability in the login interface in MediaWiki 1.15 before 1.15.4 and 1.16 before 1.16 beta 3 allows remote attackers to hijack the authentication of users for requests that 1 create accounts or 2 reset passwords, related to the Special:Userlogin form...
CVE-2010-1648
MediaWiki 1.15.x before 1.15.4 and 1.16 before 1.16 beta 3 contains a CSRF in the login interface (Special:Userlogin) that can allow remote attackers to hijack user authentication for account creation or password reset. Affected products/versions are MediaWiki 1.15.x prior to 1.15.4 and 1.16 prio...