MidnightBSD

Advisories for mediawiki

CVE-2004-1405 HIGH

MediaWiki 1.3.8 and earlier, when used with Apache mod_mime, does not properly handle files with two file extensions, such as .php.rar, which allows remote attackers to upload and execute arbitrary code.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.3
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.3.11
CVE-2004-2152 MEDIUM

Cross-site scripting (XSS) vulnerability in 'raw' page output mode for MediaWiki 1.3.4 and earlier allows remote attackers to inject arbitrary web script or HTML.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.2.0
CVE-2004-2185 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki 1.3.5 allow remote attackers to execute arbitrary scripts and/or SQL queries via (1) the UnicodeConverter extension, (2) raw page views, (3) SpecialIpblocklist, (4) SpecialEmailuser, (5) SpecialMaintenance, and (6) ImagePage.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.3.5
CVE-2004-2186 HIGH

SQL injection vulnerability in MediaWiki 1.3.5 allows remote attackers to execute arbitrary SQL commands via SpecialMaintenance.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.3.5
CVE-2004-2187 MEDIUM

Unknown vulnerability in ImagePage for MediaWiki 1.3.5, related to "filename validation," has unknown impact and attack vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.3.5
CVE-2005-0534 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allow remote attackers to inject arbitrary web script.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.4_beta1
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.4_beta4
mediawiki mediawiki 1.4_beta3
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.4_beta6
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.4_beta2
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.4_beta5
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.3.6
CVE-2005-0535 HIGH

Cross-site request forgery (CSRF) vulnerability in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allows remote attackers to perform unauthorized actions as authenticated MediaWiki users.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gentoo linux *
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.3
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.3.6
CVE-2005-0536 MEDIUM

Directory traversal vulnerability in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allows remote attackers to delete arbitrary files or determine file existence via a parameter related to image deletion.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.4_beta1
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.4_beta4
mediawiki mediawiki 1.4_beta3
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.4_beta6
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.4_beta2
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.4_beta5
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.3.6
CVE-2005-1245 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.2, when using HTML Tidy ($wgUseTidy), allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.4_beta1
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.4_beta4
mediawiki mediawiki 1.4_beta3
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.3
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.4_beta2
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.4_beta5
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.3.11
CVE-2005-1888 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.5 allows remote attackers to inject arbitrary web script via HTML attributes in page templates.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki stable_2003-11-17
mediawiki mediawiki 1.4_beta1
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.4_beta4
mediawiki mediawiki stable_2003-11-07
mediawiki mediawiki 1.4_beta3
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.3
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.4_beta2
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.4_beta5
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.3.2
mediawiki mediawiki stable_2003-08-29
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.3.11
CVE-2005-2215 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.x before 1.4.6 and 1.5 before 1.5beta3 allows remote attackers to inject arbitrary web script or HTML via a parameter in the page move template, a different vulnerability than CVE-2005-1888.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.5_beta2
mediawiki mediawiki 1.5_alpha2
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.4_beta6
mediawiki mediawiki 1.5_beta1
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5_alpha1
mediawiki mediawiki 1.4.1
CVE-2005-2396 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki 1.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the page move template.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.4_beta1
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.4_beta5
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.4_beta4
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.4_beta3
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.3
mediawiki mediawiki 1.4_beta6
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.4_beta2
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.3.11
CVE-2005-3165 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki before 1.4.9 allow remote attackers to inject arbitrary web script or HTML via (1) <math> tags or (2) Extension or <nowiki> sections that "bypass HTML style attribute restrictions" that are intended to protect against XSS vulnerabilities in Internet Explorer clients.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.4_beta1
mediawiki mediawiki 1.4_beta4
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4_beta3
mediawiki mediawiki 1.4_beta6
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.4_beta2
mediawiki mediawiki 1.4_beta5
mediawiki mediawiki 1.4.3
CVE-2005-3166 MEDIUM

Unspecified vulnerability in "edit submission handling" for MediaWiki 1.4.x before 1.4.10 and 1.3.x before 1.3.16 allows remote attackers to cause a denial of service (corruption of the previous submission) via a crafted URL.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.4_beta1
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.4_beta5
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.3.14
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.4_beta4
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.4_beta3
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.4_beta6
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.4_beta2
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.3.11
CVE-2005-3167 MEDIUM

Incomplete blacklist vulnerability in MediaWiki before 1.4.11 does not properly remove certain CSS inputs (HTML inline style attributes) that are processed as active content by Internet Explorer, which allows remote attackers to conduct cross-site scripting (XSS) attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.4_beta1
mediawiki mediawiki 1.4_beta4
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4_beta3
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.4_beta6
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.4_beta2
mediawiki mediawiki 1.4_beta5
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.4.10
CVE-2005-4031 HIGH

Eval injection vulnerability in MediaWiki 1.5.x before 1.5.3 allows remote attackers to execute arbitrary PHP code via the "user language option," which is used as part of a dynamic class name that is processed using the eval function.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.5_beta2
mediawiki mediawiki 1.5_alpha2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.5_beta3
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.5_beta1
mediawiki mediawiki 1.5_alpha1
CVE-2005-4501 MEDIUM

MediaWiki before 1.5.4 uses a hard-coded "internal placeholder string", which allows remote attackers to bypass protection against cross-site scripting (XSS) attacks and execute Javascript using inline style attributes, which are processed by Internet Explorer.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.4_beta1
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.5_beta2
mediawiki mediawiki 1.5_alpha2
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.4_beta5
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.3.14
mediawiki mediawiki 1.4.3
mediawiki mediawiki *
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.4_beta4
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.4_beta3
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.3
mediawiki mediawiki 1.4_beta6
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.5_alpha1
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.4_beta2
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.5_beta1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.3.11
mediawiki mediawiki 1.4.10
CVE-2006-0322 MEDIUM

Unspecified vulnerability the edit comment formatting functionality in MediaWiki 1.5.x before 1.5.6 and 1.4.x before 1.4.14 allows attackers to cause a denial of service (infinite loop) via "certain malformed links."

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.4_beta1
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.5_rc3
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.5_beta4
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5_beta2
mediawiki mediawiki 1.5_alpha2
mediawiki mediawiki 1.4_beta5
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.5_rc4
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.4_beta4
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5_beta3
mediawiki mediawiki 1.4_beta3
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.4_beta6
mediawiki mediawiki 1.5_alpha1
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.4_beta2
mediawiki mediawiki 1.5_rc2
mediawiki mediawiki 1.5_beta1
mediawiki mediawiki 1.4.10
CVE-2006-1498 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.5.8 and 1.4.15 allows remote attackers to inject arbitrary web script or HTML via crafted encoded links.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.5_rc3
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.5_beta4
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.5_beta2
mediawiki mediawiki 1.5_alpha2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.5_rc4
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5_beta3
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.5_alpha1
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.5_rc2
mediawiki mediawiki 1.5_beta1
mediawiki mediawiki 1.4.10
CVE-2006-2611 MEDIUM

Cross-site scripting (XSS) vulnerability in includes/Sanitizer.php in the variable handler in MediaWiki 1.6.x before r14349 allows remote attackers to inject arbitrary Javascript via unspecified vectors, possibly involving the usage of the | (pipe) character.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.6.5
mediawiki mediawiki *
CVE-2006-2895 LOW

Cross-site scripting (XSS) vulnerability in MediaWiki 1.6.0 up to versions before 1.6.7 allows remote attackers to inject arbitrary HTML and web script via the edit form.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.6.5
mediawiki mediawiki 1.6.3
mediawiki mediawiki 1.6.0
mediawiki mediawiki 1.6.2
mediawiki mediawiki 1.6.1
mediawiki mediawiki 1.6.4
mediawiki mediawiki 1.6.5_r14348
mediawiki mediawiki 1.6.6
CVE-2008-5688 MEDIUM

MediaWiki 1.8.1, and other versions before 1.13.3, when the wgShowExceptionDetails variable is enabled, sometimes provides the full installation path in a debugging message, which might allow remote attackers to obtain sensitive information via unspecified requests that trigger an uncaught exception.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.9.1
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.8.3
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.8.1
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.8.4
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.8.2
mediawiki mediawiki 1.8.5
mediawiki mediawiki 1.9.3
mediawiki mediawiki 1.9.5
mediawiki mediawiki 1.9.0
mediawiki mediawiki 1.11
mediawiki mediawiki 1.9.4
mediawiki mediawiki 1.9.6
mediawiki mediawiki 1.9.2
CVE-2010-1150 MEDIUM

MediaWiki before 1.15.3, and 1.6.x before 1.16.0beta2, does not properly handle a correctly authenticated but unintended login attempt, which makes it easier for remote authenticated users to conduct phishing attacks by arranging for a victim to login to the attacker's account and then execute a crafted user script, related to a "login CSRF" issue.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.9.1
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.7.1
mediawiki mediawiki 1.7.3
mediawiki mediawiki 1.6.8
mediawiki mediawiki 1.6.9
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.8.0
mediawiki mediawiki 1.8.1
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.6.5
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.8.2
mediawiki mediawiki 1.9.0
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.9.4
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.7.2
mediawiki mediawiki 1.6.0
mediawiki mediawiki 1.8.3
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.6.11
mediawiki mediawiki 1.6.6
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.6.10
mediawiki mediawiki 1.6.4
mediawiki mediawiki 1.7.0
mediawiki mediawiki 1.8.4
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.6.12
mediawiki mediawiki 1.6.3
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.6.2
mediawiki mediawiki 1.8.5
mediawiki mediawiki 1.9.3
mediawiki mediawiki 1.6.1
mediawiki mediawiki 1.9.5
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.9.6
mediawiki mediawiki 1.9.2
mediawiki mediawiki 1.6.7
CVE-2010-1189 MEDIUM

MediaWiki before 1.15.2 does not prevent wiki editors from linking to images from other web sites in wiki pages, which allows editors to obtain IP addresses and other information of wiki users by adding a link to an image on an attacker-controlled web site, aka "CSS validation issue."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.5
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.3
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.4.10
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.5.8
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki 1.3.14
mediawiki mediawiki *
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.4.0
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.3.11
CVE-2010-1190 MEDIUM

thumb.php in MediaWiki before 1.15.2, when used with access-restriction mechanisms such as img_auth.php, does not check user permissions before providing scaled images, which allows remote attackers to bypass intended access restrictions and read private images via unspecified manipulations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.5
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.3
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.4.10
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.5.8
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki 1.3.14
mediawiki mediawiki *
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.4.0
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.3.11
CVE-2010-1647 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki 1.15 before 1.15.4 and 1.16 before 1.16 beta 3 allows remote attackers to inject arbitrary web script or HTML via crafted Cascading Style Sheets (CSS) strings that are processed as script by Internet Explorer.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.15.2
CVE-2010-1648 MEDIUM

Cross-site request forgery (CSRF) vulnerability in the login interface in MediaWiki 1.15 before 1.15.4 and 1.16 before 1.16 beta 3 allows remote attackers to hijack the authentication of users for requests that (1) create accounts or (2) reset passwords, related to the Special:Userlogin form.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.15.2
CVE-2010-2787 MEDIUM

api.php in MediaWiki before 1.15.5 does not prevent use of public caching headers for private data, which allows remote attackers to bypass intended access restrictions and obtain sensitive information by retrieving documents from an HTTP proxy cache that has been used by a victim.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.5
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.3
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.4.10
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.5.8
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki 1.3.14
mediawiki mediawiki *
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.4.0
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.3.11
CVE-2010-2788 LOW

Cross-site scripting (XSS) vulnerability in profileinfo.php in MediaWiki before 1.15.5, when wgEnableProfileInfo is enabled, allows remote attackers to inject arbitrary web script or HTML via the filter parameter.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.9.1
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.7.1
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.6.9
mediawiki mediawiki 1.8.0
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.5
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.4.10
mediawiki mediawiki 1.6.0
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.6.11
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.4.0
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.6.1
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.9.5
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.3.11
mediawiki mediawiki 1.6.7
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.7.3
mediawiki mediawiki 1.6.8
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.8.1
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.6.5
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.8.2
mediawiki mediawiki 1.9.0
mediawiki mediawiki 1.9.4
mediawiki mediawiki 1.7.2
mediawiki mediawiki 1.8.3
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.6.6
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.5.8
mediawiki mediawiki 1.3.14
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.6.10
mediawiki mediawiki 1.6.4
mediawiki mediawiki 1.7.0
mediawiki mediawiki 1.8.4
mediawiki mediawiki 1.6.12
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.6.3
mediawiki mediawiki 1.6.2
mediawiki mediawiki 1.8.5
mediawiki mediawiki 1.9.3
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.9.6
mediawiki mediawiki 1.9.2
CVE-2010-2789 MEDIUM

PHP remote file inclusion vulnerability in MediaWikiParserTest.php in MediaWiki 1.16 beta, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.16
CVE-2011-0003 MEDIUM

MediaWiki before 1.16.1, when user or site JavaScript or CSS is enabled, allows remote attackers to conduct clickjacking attacks via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.9.1
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.7.1
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.6.9
mediawiki mediawiki 1.8.0
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.5
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.4.10
mediawiki mediawiki 1.6.0
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.4.0
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.6.1
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.9.5
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.3.11
mediawiki mediawiki 1.6.7
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.7.3
mediawiki mediawiki 1.6.8
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.8.1
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.6.5
mediawiki mediawiki stable_2003-11-07
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.8.2
mediawiki mediawiki 1.9.0
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.9.4
mediawiki mediawiki 1.7.2
mediawiki mediawiki stable_2003-11-17
mediawiki mediawiki 1.8.3
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.6.6
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.5.8
mediawiki mediawiki 1.3.14
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.6.10
mediawiki mediawiki 1.6.4
mediawiki mediawiki 1.7.0
mediawiki mediawiki 1.8.4
mediawiki mediawiki 1.6.12
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.6.3
mediawiki mediawiki 1.6.2
mediawiki mediawiki 1.8.5
mediawiki mediawiki 1.9.3
mediawiki mediawiki 1.15.3
mediawiki mediawiki stable_2003-08-29
mediawiki mediawiki 1.9.6
mediawiki mediawiki 1.9.2
mediawiki mediawiki 1.6.5_r14348
CVE-2011-0047 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.2 allows remote attackers to inject arbitrary web script or HTML via crafted Cascading Style Sheets (CSS) comments, aka "CSS injection vulnerability."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.9.1
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.7.1
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.6.9
mediawiki mediawiki 1.8.0
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.5
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.4.10
mediawiki mediawiki 1.6.0
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.4.0
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.6.1
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.9.5
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.3.11
mediawiki mediawiki 1.6.7
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.7.3
mediawiki mediawiki 1.6.8
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.8.1
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.6.5
mediawiki mediawiki stable_2003-11-07
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.8.2
mediawiki mediawiki 1.9.0
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.9.4
mediawiki mediawiki 1.7.2
mediawiki mediawiki stable_2003-11-17
mediawiki mediawiki 1.8.3
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.6.6
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.5.8
mediawiki mediawiki 1.3.14
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.6.10
mediawiki mediawiki 1.6.4
mediawiki mediawiki 1.7.0
mediawiki mediawiki 1.8.4
mediawiki mediawiki 1.6.12
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.6.3
mediawiki mediawiki 1.6.2
mediawiki mediawiki 1.8.5
mediawiki mediawiki 1.9.3
mediawiki mediawiki 1.15.3
mediawiki mediawiki stable_2003-08-29
mediawiki mediawiki 1.9.6
mediawiki mediawiki 1.9.2
mediawiki mediawiki 1.6.5_r14348
CVE-2011-0537 HIGH

Multiple directory traversal vulnerabilities in (1) languages/Language.php and (2) includes/StubObject.php in MediaWiki 1.8.0 and other versions before 1.16.2, when running on Windows and possibly Novell Netware, allow remote attackers to include and execute arbitrary local PHP files via vectors related to a crafted language file and the Language::factory function.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-22,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.9.1
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.8.3
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.11_development
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.8.0
mediawiki mediawiki 1.11.0rc1
mediawiki mediawiki 1.8.1
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.8.4
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.8.2
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.8.5
mediawiki mediawiki 1.9.3
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.9.5
mediawiki mediawiki 1.16.1
mediawiki mediawiki 1.9.0
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.11
mediawiki mediawiki 1.9.4
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.9.6
mediawiki mediawiki 1.9.2
CVE-2011-1578 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.3, when Internet Explorer 6 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via an uploaded file accessed with a dangerous extension such as .html at the end of the query string, in conjunction with a modified URI path that has a %2E sequence in place of the . (dot) character.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.9.1
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.7.1
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.6.9
mediawiki mediawiki 1.8.0
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.5
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.15.5
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.4.10
mediawiki mediawiki 1.6.0
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.6.11
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.4.0
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.6.1
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.9.5
mediawiki mediawiki 1.16.1
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.3.11
mediawiki mediawiki 1.6.7
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.7.3
mediawiki mediawiki 1.6.8
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.8.1
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.6.5
mediawiki mediawiki 1.15.4
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.8.2
mediawiki mediawiki 1.9.0
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.9.4
mediawiki mediawiki 1.7.2
mediawiki mediawiki 1.8.3
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.6.6
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.5.8
mediawiki mediawiki 1.3.14
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.6.10
mediawiki mediawiki 1.6.4
mediawiki mediawiki 1.7.0
mediawiki mediawiki 1.8.4
mediawiki mediawiki 1.6.12
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.6.3
mediawiki mediawiki 1.6.2
mediawiki mediawiki 1.8.5
mediawiki mediawiki 1.9.3
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.9.6
mediawiki mediawiki 1.9.2
CVE-2011-1579 MEDIUM

The checkCss function in includes/Sanitizer.php in the wikitext parser in MediaWiki before 1.16.3 does not properly validate Cascading Style Sheets (CSS) token sequences, which allows remote attackers to conduct cross-site scripting (XSS) attacks or obtain sensitive information by using the \2f\2a and \2a\2f hex strings to surround CSS comments.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.9.1
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.7.1
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.6.9
mediawiki mediawiki 1.8.0
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.5
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.15.5
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.4.10
mediawiki mediawiki 1.6.0
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.6.11
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.4.0
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.6.1
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.9.5
mediawiki mediawiki 1.16.1
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.3.11
mediawiki mediawiki 1.6.7
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.7.3
mediawiki mediawiki 1.6.8
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.8.1
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.6.5
mediawiki mediawiki 1.15.4
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.8.2
mediawiki mediawiki 1.9.0
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.9.4
mediawiki mediawiki 1.7.2
mediawiki mediawiki 1.8.3
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.6.6
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.5.8
mediawiki mediawiki 1.3.14
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.6.10
mediawiki mediawiki 1.6.4
mediawiki mediawiki 1.7.0
mediawiki mediawiki 1.8.4
mediawiki mediawiki 1.6.12
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.6.3
mediawiki mediawiki 1.6.2
mediawiki mediawiki 1.8.5
mediawiki mediawiki 1.9.3
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.9.6
mediawiki mediawiki 1.9.2
CVE-2011-1580 LOW

The transwiki import functionality in MediaWiki before 1.16.3 does not properly check privileges, which allows remote authenticated users to perform imports from any wgImportSources wiki via a crafted POST request.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.9.1
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.7.1
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.6.9
mediawiki mediawiki 1.8.0
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.5
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.15.5
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.4.10
mediawiki mediawiki 1.6.0
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.6.11
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.4.0
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.6.1
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.9.5
mediawiki mediawiki 1.16.1
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.3.11
mediawiki mediawiki 1.6.7
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.7.3
mediawiki mediawiki 1.6.8
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.8.1
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.6.5
mediawiki mediawiki 1.15.4
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.8.2
mediawiki mediawiki 1.9.0
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.9.4
mediawiki mediawiki 1.7.2
mediawiki mediawiki 1.8.3
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.6.6
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.5.8
mediawiki mediawiki 1.3.14
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.6.10
mediawiki mediawiki 1.6.4
mediawiki mediawiki 1.7.0
mediawiki mediawiki 1.8.4
mediawiki mediawiki 1.6.12
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.6.3
mediawiki mediawiki 1.6.2
mediawiki mediawiki 1.8.5
mediawiki mediawiki 1.9.3
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.9.6
mediawiki mediawiki 1.9.2
CVE-2011-1587 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.4, when Internet Explorer 6 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via an uploaded file accessed with a dangerous extension such as .html located before a ? (question mark) in a query string, in conjunction with a modified URI path that has a %2E sequence in place of the . (dot) character. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-1578.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.9.1
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.7.1
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.6.9
mediawiki mediawiki 1.8.0
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.5
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.15.5
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.16.2
mediawiki mediawiki 1.4.10
mediawiki mediawiki 1.6.0
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.6.11
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.4.0
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.6.1
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.9.5
mediawiki mediawiki 1.16.1
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.3.11
mediawiki mediawiki 1.6.7
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.7.3
mediawiki mediawiki 1.6.8
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.8.1
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.6.5
mediawiki mediawiki 1.15.4
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.8.2
mediawiki mediawiki 1.9.0
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.9.4
mediawiki mediawiki 1.7.2
mediawiki mediawiki 1.8.3
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.6.6
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.5.8
mediawiki mediawiki 1.3.14
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.6.10
mediawiki mediawiki 1.6.4
mediawiki mediawiki 1.7.0
mediawiki mediawiki 1.8.4
mediawiki mediawiki 1.6.12
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.6.3
mediawiki mediawiki 1.6.2
mediawiki mediawiki 1.8.5
mediawiki mediawiki 1.9.3
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.9.6
mediawiki mediawiki 1.9.2
CVE-2011-1765 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.5, when Internet Explorer 6 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via an uploaded file accessed with a dangerous extension such as .shtml at the end of the query string, in conjunction with a modified URI path that has a %2E sequence in place of the . (dot) character. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-1578 and CVE-2011-1587.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.9.1
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4
mediawiki mediawiki 1.16.3
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.7.1
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.6.9
mediawiki mediawiki 1.8.0
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.5
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.15.5
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.16.2
mediawiki mediawiki 1.4.10
mediawiki mediawiki 1.6.0
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.6.11
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.4.0
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.6.1
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.9.5
mediawiki mediawiki 1.16.1
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.3.11
mediawiki mediawiki 1.6.7
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.7.3
mediawiki mediawiki 1.6.8
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.8.1
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.6.5
mediawiki mediawiki 1.15.4
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.8.2
mediawiki mediawiki 1.9.0
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.9.4
mediawiki mediawiki 1.7.2
mediawiki mediawiki 1.8.3
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.6.6
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.5.8
mediawiki mediawiki 1.3.14
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.6.10
mediawiki mediawiki 1.6.4
mediawiki mediawiki 1.7.0
mediawiki mediawiki 1.8.4
mediawiki mediawiki 1.6.12
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.6.3
mediawiki mediawiki 1.6.2
mediawiki mediawiki 1.8.5
mediawiki mediawiki 1.9.3
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.9.6
mediawiki mediawiki 1.9.2
CVE-2011-1766 MEDIUM

includes/User.php in MediaWiki before 1.16.5, when wgBlockDisablesLogin is enabled, does not clear certain cached data after verification of an auth token fails, which allows remote attackers to bypass authentication by creating crafted wikiUserID and wikiUserName cookies, or by leveraging an unattended workstation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.9.1
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4
mediawiki mediawiki 1.16.3
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.7.1
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.6.9
mediawiki mediawiki 1.8.0
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.5
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.15.5
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.16.2
mediawiki mediawiki 1.4.10
mediawiki mediawiki 1.6.0
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.6.11
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.4.0
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.6.1
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.9.5
mediawiki mediawiki 1.16.1
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.3.11
mediawiki mediawiki 1.6.7
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.7.3
mediawiki mediawiki 1.6.8
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.8.1
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.6.5
mediawiki mediawiki 1.15.4
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.8.2
mediawiki mediawiki 1.9.0
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.9.4
mediawiki mediawiki 1.7.2
mediawiki mediawiki 1.8.3
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.6.6
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.5.8
mediawiki mediawiki 1.3.14
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.6.10
mediawiki mediawiki 1.6.4
mediawiki mediawiki 1.7.0
mediawiki mediawiki 1.8.4
mediawiki mediawiki 1.6.12
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.6.3
mediawiki mediawiki 1.6.2
mediawiki mediawiki 1.8.5
mediawiki mediawiki 1.9.3
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.9.6
mediawiki mediawiki 1.9.2
CVE-2011-4360 MEDIUM

MediaWiki before 1.17.1 allows remote attackers to obtain the page titles of all restricted pages via a series of requests involving the (1) curid or (2) oldid parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
debian debian_linux 6.0
debian debian_linux 5.0
mediawiki mediawiki *
CVE-2011-4361 MEDIUM

MediaWiki before 1.17.1 does not check for read permission before handling action=ajax requests, which allows remote attackers to obtain sensitive information by (1) leveraging the SpecialUpload::ajaxGetExistsWarning function, or by (2) leveraging an extension, as demonstrated by the CategoryTree, ExtTab, and InlineEditor extensions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
debian debian_linux 6.0
debian debian_linux 5.0
mediawiki mediawiki *
CVE-2012-2698 MEDIUM

Cross-site scripting (XSS) vulnerability in the outputPage function in includes/SkinTemplate.php in MediaWiki before 1.17.5, 1.18.x before 1.18.4, and 1.19.x before 1.19.1 allows remote attackers to inject arbitrary web script or HTML via the uselang parameter to index.php/Main_page.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.9.1
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.7.1
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.6.9
mediawiki mediawiki 1.8.0
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.5
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.15.5
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.16.2
mediawiki mediawiki 1.4.10
mediawiki mediawiki 1.6.0
mediawiki mediawiki 1.17.2
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.18.1
mediawiki mediawiki 1.6.11
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.4.0
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.19
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.6.1
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.9.5
mediawiki mediawiki 1.16.1
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.3.11
mediawiki mediawiki 1.6.7
mediawiki mediawiki 1.18.0
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.7.3
mediawiki mediawiki 1.6.8
mediawiki mediawiki 1.17
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.8.1
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.6.5
mediawiki mediawiki 1.15.4
mediawiki mediawiki 1.18.2
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.17.3
mediawiki mediawiki 1.8.2
mediawiki mediawiki 1.9.0
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.18.3
mediawiki mediawiki 1.9.4
mediawiki mediawiki 1.7.2
mediawiki mediawiki 1.8.3
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.18
mediawiki mediawiki 1.6.6
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.5.8
mediawiki mediawiki 1.17.1
mediawiki mediawiki 1.3.14
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.6.10
mediawiki mediawiki 1.6.4
mediawiki mediawiki 1.7.0
mediawiki mediawiki 1.8.4
mediawiki mediawiki 1.6.12
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.17.0
mediawiki mediawiki 1.6.3
mediawiki mediawiki 1.6.2
mediawiki mediawiki 1.8.5
mediawiki mediawiki 1.9.3
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.9.6
mediawiki mediawiki 1.9.2
CVE-2012-4377 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.18.5 and 1.19.x before 1.19.2 allows remote attackers to inject arbitrary web script or HTML via a File: link to a nonexistent image.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.19.0
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
CVE-2012-4378 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki before 1.18.5 and 1.19.x before 1.19.2, when unspecified JavaScript gadgets are used, allow remote attackers to inject arbitrary web script or HTML via the userlang parameter to w/index.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.19.0
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
CVE-2012-4379 MEDIUM

MediaWiki before 1.18.5, and 1.19.x before 1.19.2 does not send a restrictive X-Frame-Options HTTP header, which allows remote attackers to conduct clickjacking attacks via an embedded API response in an IFRAME element.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.19.0
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
CVE-2012-4380 MEDIUM

MediaWiki before 1.18.5, and 1.19.x before 1.19.2 allows remote attackers to bypass GlobalBlocking extension IP address blocking and create an account via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.19.0
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
CVE-2012-4382 MEDIUM

MediaWiki before 1.18.5, and 1.19.x before 1.19.2 does not properly protect user block metadata, which allows remote administrators to read a user block reason via a reblock attempt.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.19.0
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
CVE-2012-6453 MEDIUM

Cross-site scripting (XSS) vulnerability in the RSS Reader extension before 0.2.6 for MediaWiki allows remote attackers to inject arbitrary web script or HTML via a crafted feed.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki rssreader 0.2.1
mediawiki rssreader 0.2.4
mediawiki rssreader *
mediawiki rssreader 0.2.2
mediawiki rssreader 0.2
mediawiki rssreader 0.2.3
CVE-2013-1816 MEDIUM

MediaWiki before 1.19.4 and 1.20.x before 1.20.3 allows remote attackers to cause a denial of service (application crash) by sending a specially crafted request.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
redhat enterprise_linux 6.0
debian debian_linux 9.0
debian debian_linux 10.0
mediawiki mediawiki *
fedoraproject fedora 18
CVE-2013-1817 MEDIUM

MediaWiki before 1.19.4 and 1.20.x before 1.20.3 contains an error in the api.php script which allows remote attackers to obtain sensitive information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
redhat enterprise_linux 6.0
debian debian_linux 9.0
debian debian_linux 10.0
mediawiki mediawiki *
fedoraproject fedora 18
CVE-2013-1818 MEDIUM

maintenance/mwdoc-filter.php in MediaWiki before 1.20.3 allows remote attackers to read arbitrary files via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki *
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.20
CVE-2013-1951 MEDIUM

A cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.5 and 1.20.x before 1.20.4 and allows remote attackers to inject arbitrary web script or HTML via Lua function names.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
debian debian_linux 9.0
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2013-2031 MEDIUM

MediaWiki before 1.19.6 and 1.20.x before 1.20.5 allows remote attackers to conduct cross-site scripting (XSS) attacks, as demonstrated by a CDATA section containing valid UTF-7 encoded sequences in a SVG file, which is then incorrectly interpreted as UTF-8 by Chrome and Firefox.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.18.0
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.17
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.17.4
gentoo linux *
mediawiki mediawiki 1.15.4
mediawiki mediawiki 1.15.5
mediawiki mediawiki 1.18.2
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.17.3
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.18.3
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.16.2
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.17.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.18.1
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.18
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.17.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.17.0
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.16.1
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
CVE-2013-2032 MEDIUM

MediaWiki before 1.19.6 and 1.20.x before 1.20.5 does not allow extensions to prevent password changes without using both Special:PasswordReset and Special:ChangePassword, which allows remote attackers to bypass the intended restrictions of an extension that only implements one of these blocks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.18.0
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.20.4
fedoraproject fedora 17
mediawiki mediawiki 1.17
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.17.4
gentoo linux *
mediawiki mediawiki 1.15.4
mediawiki mediawiki 1.15.5
mediawiki mediawiki 1.18.2
fedoraproject fedora 19
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.15.2
fedoraproject fedora 18
mediawiki mediawiki 1.17.3
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.18.3
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.16.2
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.17.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.18.1
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.18
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.17.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.17.0
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.16.1
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
CVE-2013-2114 MEDIUM

Unrestricted file upload vulnerability in the chunk upload API in MediaWiki 1.19 through 1.19.6 and 1.20.x before 1.20.6 allows remote attackers to execute arbitrary code by uploading a file with an executable extension.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
CVE-2013-4301 MEDIUM

includes/resourceloader/ResourceLoaderContext.php in MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 allows remote attackers to obtain sensitive information via a "<" (open angle bracket) character in the lang parameter to w/load.php, which reveals the installation path in an error message.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2013-4302 MEDIUM

(1) ApiBlock.php, (2) ApiCreateAccount.php, (3) ApiLogin.php, (4) ApiMain.php, (5) ApiQueryDeletedrevs.php, (6) ApiTokens.php, and (7) ApiUnblock.php in includes/api/ in MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 allow remote attackers to obtain CSRF tokens and bypass the cross-site request forgery (CSRF) protection mechanism via a JSONP request to wiki/api.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2013-4303 MEDIUM

includes/libs/IEUrlExtension.php in the MediaWiki API in MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 does not properly detect extensions when there are an even number of "." (period) characters in a string, which allows remote attackers to conduct cross-site scripting (XSS) attacks via the siprop parameter in a query action to wiki/api.php.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2013-4304 HIGH

The CentralAuth extension for MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 caches a valid CentralAuthUser object in the centralauth_User cookie even when a user has not successfully logged in, which allows remote attackers to bypass authentication without a password.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
brion_vibber centralauth_extension -
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2013-4305 MEDIUM

Cross-site scripting (XSS) vulnerability in contrib/example.php in the SyntaxHighlight GeSHi extension for MediaWiki, possibly as downloaded before September 2013, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.21.1
CVE-2013-4306 MEDIUM

Cross-site request forgery (CSRF) vulnerability in api/ApiQueryCheckUser.php in the CheckUser extension for MediaWiki, possibly Checkuser before 2.3, allows remote attackers to hijack the authentication of arbitrary users for requests that "perform sensitive write actions" via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2013-4307 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in repo/includes/EntityView.php in the Wikibase extension for MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 allow (1) remote attackers to inject arbitrary web script or HTML via a label in the "In other languages" section or (2) remote administrators to inject arbitrary web script or HTML via a description.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2013-4567 MEDIUM

Incomplete blacklist vulnerability in Sanitizer::checkCss in MediaWiki before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3 allows remote attackers to conduct cross-site scripting (XSS) attacks via a \b (backspace) character in CSS.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.20.6
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2013-4568 MEDIUM

Incomplete blacklist vulnerability in Sanitizer::checkCss in MediaWiki before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3 allows remote attackers to conduct cross-site scripting (XSS) attacks via certain non-ASCII characters in CSS, as demonstrated using variations of "expression" containing (1) full width characters or (2) IPA extensions, which are converted and rendered by Internet Explorer.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.20.6
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2013-4569 MEDIUM

The CleanChanges extension for MediaWiki before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3, when "Group changes by page in recent changes and watchlist" is enabled, allows remote attackers to obtain sensitive information (revision-deleted IPs) via the Recent Changes page.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.20.6
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2013-4570 MEDIUM

The zend_inline_hash_func function in php-luasandbox in the Scribuntu extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to converting Lua data structures to PHP, as demonstrated by passing { [{}] = 1 } to a module function.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.21.1
CVE-2013-4571 HIGH

Buffer overflow in php-luasandbox in the Scribuntu extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 has unspecified impact and remote vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.21.1
CVE-2013-4572 MEDIUM

The CentralNotice extension for MediaWiki before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3 sets the Cache-Control header to cache session cookies when a user is autocreated, which allows remote attackers to authenticate as the created user.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-384,

Products Affected

Vendor Product Version
fedoraproject fedora 19
mediawiki mediawiki *
fedoraproject fedora 18
CVE-2013-4573 MEDIUM

Cross-site scripting (XSS) vulnerability in the ZeroRatedMobileAccess extension for MediaWiki 1.19.x before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3 allows remote attackers to inject arbitrary web script or HTML via the "to" parameter to index.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2013-4574 MEDIUM

Cross-site scripting (XSS) vulnerability in the TimeMediaHandler extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to inject arbitrary web script or HTML via vectors related to videos.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.21.1
CVE-2013-6451 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki 1.19.9 before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to inject arbitrary web script or HTML via unspecified CSS values.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2013-6452 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to inject arbitrary web script or HTML via crafted XSL in an SVG file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.21.1
CVE-2013-6453 HIGH

MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 does not properly sanitize SVG files, which allows remote attackers to have unspecified impact via invalid XML.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.21.1
CVE-2013-6454 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to inject arbitrary web script or HTML via a -o-link attribute.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.21.1
CVE-2013-6455 MEDIUM

The CentralAuth extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to obtain usernames via vectors related to writing the names to the DOM of a page.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2013-6472 MEDIUM

MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to obtain information about deleted page via the (1) log API, (2) enhanced RecentChanges, and (3) user watchlists.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.21.1
CVE-2013-7444 MEDIUM

The Special:Contributions page in MediaWiki before 1.22.0 allows remote attackers to determine if an IP is autoblocked via the "Change block" text.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2014-1610 MEDIUM

MediaWiki 1.22.x before 1.22.2, 1.21.x before 1.21.5, and 1.19.x before 1.19.11, when DjVu or PDF file upload support is enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the page parameter to includes/media/DjVu.php; (2) the w parameter (aka width field) to thumb.php, which is not properly handled by includes/media/PdfHandler_body.php; and possibly unspecified vectors in (3) includes/media/Bitmap.php and (4) includes/media/ImageHandler.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.19.10
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.9
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.21.1
CVE-2014-1686 MEDIUM

MediaWiki 1.18.0 allows remote attackers to obtain the installation path via vectors related to thumbnail creation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.18.0
CVE-2014-2242 MEDIUM

includes/upload/UploadBase.php in MediaWiki before 1.19.12, 1.20.x and 1.21.x before 1.21.6, and 1.22.x before 1.22.3 does not prevent use of invalid namespaces in SVG files, which allows remote attackers to conduct cross-site scripting (XSS) attacks via an SVG upload, as demonstrated by use of a W3C XHTML namespace in conjunction with an IFRAME element.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.18.0
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.17
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.17.4
mediawiki mediawiki 1.19.9
mediawiki mediawiki 1.15.4
mediawiki mediawiki 1.15.5
mediawiki mediawiki 1.18.2
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.17.3
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.18.3
mediawiki mediawiki 1.19.10
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.16.2
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.17.2
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.18.1
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.18
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.17.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.17.0
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.16.1
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.20
CVE-2014-2243 MEDIUM

includes/User.php in MediaWiki before 1.19.12, 1.20.x and 1.21.x before 1.21.6, and 1.22.x before 1.22.3 terminates validation of a user token upon encountering the first incorrect character, which makes it easier for remote attackers to obtain access via a brute-force attack that relies on timing differences in responses to incorrect token guesses.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.18.0
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.17
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.17.4
mediawiki mediawiki 1.19.9
mediawiki mediawiki 1.15.4
mediawiki mediawiki 1.15.5
mediawiki mediawiki 1.18.2
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.17.3
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.18.3
mediawiki mediawiki 1.19.10
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.16.2
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.17.2
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.18.1
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.18
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.17.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.17.0
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.16.1
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.20
CVE-2014-2244 MEDIUM

Cross-site scripting (XSS) vulnerability in the formatHTML function in includes/api/ApiFormatBase.php in MediaWiki before 1.19.12, 1.20.x and 1.21.x before 1.21.6, and 1.22.x before 1.22.3 allows remote attackers to inject arbitrary web script or HTML via a crafted string located after http:// in the text parameter to api.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.18.0
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.17
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.17.4
mediawiki mediawiki 1.19.9
mediawiki mediawiki 1.15.4
mediawiki mediawiki 1.15.5
mediawiki mediawiki 1.18.2
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.17.3
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.18.3
mediawiki mediawiki 1.19.10
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.16.2
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.17.2
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.18.1
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.18
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.17.1
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.17.0
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.16.1
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.20
CVE-2014-2665 MEDIUM

includes/specials/SpecialChangePassword.php in MediaWiki before 1.19.14, 1.20.x and 1.21.x before 1.21.8, and 1.22.x before 1.22.5 does not properly handle a correctly authenticated but unintended login attempt, which makes it easier for remote authenticated users to obtain sensitive information by arranging for a victim to login to the attacker's account, as demonstrated by tracking the victim's activity, related to a "login CSRF" issue.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.11
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.19.8
mediawiki mediawiki *
mediawiki mediawiki 1.19.9
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.12
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.19.10
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2014-2853 MEDIUM

Cross-site scripting (XSS) vulnerability in includes/actions/InfoAction.php in MediaWiki before 1.21.9 and 1.22.x before 1.22.6 allows remote attackers to inject arbitrary web script or HTML via the sort key in an info action.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.9.1
mediawiki mediawiki 1.3.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.10.0
mediawiki mediawiki 1.13.2
mediawiki mediawiki 1.4.6
mediawiki mediawiki 1.4
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.5.0
mediawiki mediawiki 1.4.13
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.7.1
mediawiki mediawiki 1.4.11
mediawiki mediawiki 1.5.6
mediawiki mediawiki 1.3.4
mediawiki mediawiki 1.6.9
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.8.0
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.3.2
mediawiki mediawiki 1.4.3
mediawiki mediawiki 1.5.4
mediawiki mediawiki 1.5
mediawiki mediawiki 1.2.0
mediawiki mediawiki 1.5.5
mediawiki mediawiki 1.19.9
mediawiki mediawiki 1.15.5
mediawiki mediawiki 1.4.7
mediawiki mediawiki 1.3.8
mediawiki mediawiki 1.2.3
mediawiki mediawiki 1.3.9
mediawiki mediawiki 1.3.12
mediawiki mediawiki 1.3
mediawiki mediawiki 1.13.0
mediawiki mediawiki 1.3.5
mediawiki mediawiki 1.14.0
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.3.1
mediawiki mediawiki 1.14.1
mediawiki mediawiki 1.3.6
mediawiki mediawiki 1.16.2
mediawiki mediawiki 1.4.10
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.6.0
mediawiki mediawiki 1.17.2
mediawiki mediawiki 1.4.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.4.9
mediawiki mediawiki 1.18.1
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.6.11
mediawiki mediawiki 1.4.1
mediawiki mediawiki 1.10.1
mediawiki mediawiki 1.19.13
mediawiki mediawiki 1.19.14
mediawiki mediawiki 1.11.1
mediawiki mediawiki 1.13.3
mediawiki mediawiki *
mediawiki mediawiki 1.13.4
mediawiki mediawiki 1.4.0
mediawiki mediawiki 1.4.5
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.5.2
mediawiki mediawiki 1.10.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.12
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.3.3
mediawiki mediawiki 1.2.5
mediawiki mediawiki 1.19
mediawiki mediawiki 1.4.12
mediawiki mediawiki 1.15.1
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.6.1
mediawiki mediawiki 1.2.4
mediawiki mediawiki 1.3.15
mediawiki mediawiki 1.9.5
mediawiki mediawiki 1.16.1
mediawiki mediawiki 1.11
mediawiki mediawiki 1.15.0
mediawiki mediawiki 1.3.11
mediawiki mediawiki 1.6.7
mediawiki mediawiki 1.20
mediawiki mediawiki 1.18.0
mediawiki mediawiki 1.11.2
mediawiki mediawiki 1.3.13
mediawiki mediawiki 1.5.7
mediawiki mediawiki 1.7.3
mediawiki mediawiki 1.6.8
mediawiki mediawiki 1.17
mediawiki mediawiki 1.12.0
mediawiki mediawiki 1.8.1
mediawiki mediawiki 1.12.4
mediawiki mediawiki 1.17.4
mediawiki mediawiki 1.6.5
mediawiki mediawiki 1.15.4
mediawiki mediawiki 1.18.2
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.3.10
mediawiki mediawiki 1.4.14
mediawiki mediawiki 1.12.1
mediawiki mediawiki 1.13.1
mediawiki mediawiki 1.2.2
mediawiki mediawiki 1.1.0
mediawiki mediawiki 1.15.2
mediawiki mediawiki 1.17.3
mediawiki mediawiki 1.8.2
mediawiki mediawiki 1.9.0
mediawiki mediawiki 1.16.0
mediawiki mediawiki 1.18.3
mediawiki mediawiki 1.19.10
mediawiki mediawiki 1.9.4
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.7.2
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.8.3
mediawiki mediawiki 1.10.2
mediawiki mediawiki 1.5.1
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.12.3
mediawiki mediawiki 1.11.0
mediawiki mediawiki 1.4.4
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.2.1
mediawiki mediawiki 1.18
mediawiki mediawiki 1.6.6
mediawiki mediawiki 1.4.8
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.5.8
mediawiki mediawiki 1.19.11
mediawiki mediawiki 1.17.1
mediawiki mediawiki 1.3.14
mediawiki mediawiki 1.10.3
mediawiki mediawiki 1.2.6
mediawiki mediawiki 1.12.2
mediawiki mediawiki 1.5.3
mediawiki mediawiki 1.6.10
mediawiki mediawiki 1.6.4
mediawiki mediawiki 1.7.0
mediawiki mediawiki 1.8.4
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.6.12
mediawiki mediawiki 1.3.7
mediawiki mediawiki 1.17.0
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.6.3
mediawiki mediawiki 1.6.2
mediawiki mediawiki 1.8.5
mediawiki mediawiki 1.9.3
mediawiki mediawiki 1.15.3
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.9.6
mediawiki mediawiki 1.9.2
mediawiki mediawiki 1.19.5
CVE-2014-3454 MEDIUM

Cross-site request forgery (CSRF) vulnerability in Special:CreateCategory in the SemanticForms extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to hijack the authentication of users for requests that create categories via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.21.1
CVE-2014-3455 MEDIUM

Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) CreateProperty, (2) CreateTemplate, (3) CreateForm, and (4) CreateClass special pages in the SemanticForms extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allow remote attackers to hijack the authentication of users for requests that have unspecified impact and vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki *
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.21.1
CVE-2014-3966 LOW

Cross-site scripting (XSS) vulnerability in Special:PasswordReset in MediaWiki before 1.19.16, 1.21.x before 1.21.10, and 1.22.x before 1.22.7, when wgRawHtml is enabled, allows remote attackers to inject arbitrary web script or HTML via an invalid username.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.19.11
mediawiki mediawiki 1.19.13
mediawiki mediawiki 1.19.14
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.19.8
mediawiki mediawiki *
mediawiki mediawiki 1.19.9
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.19.12
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.19.10
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
mediawiki mediawiki 1.21.1
CVE-2014-5241 MEDIUM

The JSONP endpoint in includes/api/ApiFormatJson.php in MediaWiki before 1.19.18, 1.20.x through 1.22.x before 1.22.9, and 1.23.x before 1.23.2 accepts certain long callback values and does not restrict the initial bytes of a JSONP response, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks, and obtain sensitive information, via a crafted OBJECT element with SWF content consistent with a restricted character set.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.19.16
mediawiki mediawiki 1.19.9
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.19.10
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.15
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.11
mediawiki mediawiki 1.19.13
mediawiki mediawiki 1.19.14
mediawiki mediawiki 1.22.7
mediawiki mediawiki *
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.19.12
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.19.5
CVE-2014-5242 MEDIUM

Cross-site scripting (XSS) vulnerability in mediawiki.page.image.pagination.js in MediaWiki 1.22.x before 1.22.9 and 1.23.x before 1.23.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving the multipageimagenavbox class in conjunction with an action=raw value.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.22.7
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
CVE-2014-5243 MEDIUM

MediaWiki before 1.19.18, 1.20.x through 1.22.x before 1.22.9, and 1.23.x before 1.23.2 does not enforce an IFRAME protection mechanism for transcluded pages, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.19.16
mediawiki mediawiki 1.19.9
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.19.10
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.19.15
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.11
mediawiki mediawiki 1.19.13
mediawiki mediawiki 1.19.14
mediawiki mediawiki 1.22.7
mediawiki mediawiki *
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.19.12
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.19.5
CVE-2014-7199 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.19, 1.22.x before 1.22.11, and 1.23.x before 1.23.4 allows remote attackers to inject arbitrary web script or HTML via a crafted SVG file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.19.15
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.19.17
mediawiki mediawiki 1.19.11
mediawiki mediawiki 1.19.13
mediawiki mediawiki 1.19.14
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.22.7
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki 1.19.16
mediawiki mediawiki 1.19.9
mediawiki mediawiki 1.19.18
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.19.12
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.19.10
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
CVE-2014-7295 LOW

The (1) Special:Preferences and (2) Special:UserLogin pages in MediaWiki before 1.19.20, 1.22.x before 1.22.12 and 1.23.x before 1.23.5 allows remote authenticated users to conduct cross-site scripting (XSS) attacks or have unspecified other impact via crafted CSS, as demonstrated by modifying MediaWiki:Common.css.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.19.15
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.19.17
mediawiki mediawiki 1.19.11
mediawiki mediawiki 1.19.13
mediawiki mediawiki 1.19.14
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.22.7
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki 1.19.16
mediawiki mediawiki *
mediawiki mediawiki 1.19.9
mediawiki mediawiki 1.19.18
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.19.12
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.19.10
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.5
CVE-2014-9276 MEDIUM

Cross-site request forgery (CSRF) vulnerability in the Special:ExpandedTemplates page in MediaWiki before 1.19.22, 1.20.x through 1.22.x before 1.22.14, and 1.23.x before 1.23.7, when $wgRawHTML is set to true, allows remote attackers to hijack the authentication of users with edit permissions for requests that cross-site scripting (XSS) attacks via the wpInput parameter, which is not properly handled in the preview.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki 1.22.10
mediawiki mediawiki *
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2014-9277 HIGH

The wfMangleFlashPolicy function in OutputHandler.php in MediaWiki before 1.19.22, 1.20.x through 1.22.x before 1.22.14, and 1.23.x before 1.23.7 allows remote attackers to conduct PHP object injection attacks via a crafted string containing <cross-domain-policy> in a PHP format request, which causes the string length to change when converting the request to <NOT-cross-domain-policy>.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki 1.22.10
mediawiki mediawiki *
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2014-9475 LOW

Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki before 1.19.23, 1.2x before 1.22.15, 1.23.x before 1.23.8, and 1.24.x before 1.24.1 allows remote authenticated users to inject arbitrary web script or HTML via a wikitext message.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki *
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2014-9476 MEDIUM

MediaWiki 1.2x before 1.22.15, 1.23.x before 1.23.8, and 1.24.x before 1.24.1 allows remote attackers to bypass CORS restrictions in $wgCrossSiteAJAXdomains via a domain that has a partial match to an allowed origin, as demonstrated by "http://en.wikipedia.org.evilsite.example/."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki *
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2014-9477 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in the Listings extension for MediaWiki allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) url parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki *
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2014-9478 LOW

Cross-site scripting (XSS) vulnerability in the preview in the ExpandTemplates extension for MediaWiki, when $wgRawHTML is set to true, allows remote attackers to inject arbitrary web script or HTML via the wpInput parameter to the Special:ExpandTemplates page.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki *
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2014-9479 MEDIUM

Cross-site scripting (XSS) vulnerability in the preview in the TemplateSandbox extension for MediaWiki allows remote attackers to inject arbitrary web script or HTML via the text parameter to Special:TemplateSandbox.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki *
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2014-9480 MEDIUM

Cross-site scripting (XSS) vulnerability in the Hovercards extension for MediaWiki allows remote attackers to inject arbitrary web script or HTML via vectors related to text extracts.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki *
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2014-9481 MEDIUM

The Scribunto extension for MediaWiki allows remote attackers to obtain the rollback token and possibly other sensitive information via a crafted module, related to unstripping special page HTML.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 2.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2014-9487 HIGH

The getid3 library in MediaWiki before 1.24.1, 1.23.8, 1.22.15 and 1.19.23 allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack. NOTE: Related to CVE-2014-2053.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-611,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.19.8
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki 1.19.16
mediawiki mediawiki 1.19.9
mediawiki mediawiki 1.19.20
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.19.10
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.19.1
mediawiki mediawiki 1.19.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.19.2
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.19.22
mediawiki mediawiki 1.19.15
mediawiki mediawiki 1.19.0
mediawiki mediawiki 1.19.17
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.19.11
mediawiki mediawiki 1.19.13
mediawiki mediawiki 1.19.14
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki 1.19.18
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.19.4
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.19.12
mediawiki mediawiki 1.19.19
mediawiki mediawiki 1.19.6
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.19
mediawiki mediawiki 1.19.21
mediawiki mediawiki 1.19.7
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.19.5
CVE-2014-9507 LOW

MediaWiki 1.21.x, 1.22.x before 1.22.14, and 1.23.x before 1.23.7, when $wgContentHandlerUseDB is enabled, allows remote attackers to conduct cross-site scripting (XSS) attacks by setting the content model for a revision to JS.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki 1.22.10
mediawiki mediawiki *
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.20
mediawiki mediawiki 1.21.1
CVE-2015-10058 MEDIUM

A vulnerability, which was classified as problematic, was found in Wikisource Category Browser. This affects an unknown part of the file index.php. The manipulation of the argument lang leads to cross site scripting. It is possible to initiate the attack remotely. The patch is named 764f4e8ce3f9242637df77530c70ae8a2ec4b6a1. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-218415.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki wikisource_category_browser *
CVE-2015-2931 MEDIUM

Incomplete blacklist vulnerability in includes/upload/UploadBase.php in MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 allows remote attackers to inject arbitrary web script or HTML via an application/xml MIME type for a nested SVG with a data: URI.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.22.15
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki *
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.23.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.20
CVE-2015-2932 MEDIUM

Incomplete blacklist vulnerability in MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 allows remote attackers to inject arbitrary web script or HTML via an animated href XLink element.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.22.15
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki *
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.23.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.20
CVE-2015-2933 MEDIUM

Cross-site scripting (XSS) vulnerability in the Html class in MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 allows remote attackers to inject arbitrary web script or HTML via a LanguageConverter substitution string when using a language variant.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.22.15
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki *
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.23.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.20
CVE-2015-2934 MEDIUM

MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 does not properly handle when the Zend interpreter xml_parse function does not expand entities, which allows remote attackers to inject arbitrary web script or HTML via a crafted SVG file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.22.15
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki *
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.23.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.20
CVE-2015-2935 MEDIUM

MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 allows remote attackers to bypass the SVG filtering and obtain sensitive user information via a mixed case @import in a style element in an SVG file, as demonstrated by "@imporT."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.22.15
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki *
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.23.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.20
CVE-2015-2936 HIGH

MediaWiki 1.24.x before 1.24.2, when using PBKDF2 for password hashing, allows remote attackers to cause a denial of service (CPU consumption) via a long password.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.1
CVE-2015-2937 HIGH

MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2, when using HHVM or Zend PHP, allows remote attackers to cause a denial of service ("quadratic blowup" and memory consumption) via an XML file containing an entity declaration with long replacement text and many references to this entity, a different vulnerability than CVE-2015-2942.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.22.15
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki *
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.23.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.20
CVE-2015-2938 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 allows remote attackers to inject arbitrary web script or HTML via a custom JavaScript file, which is not properly handled when previewing the file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.22.15
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki *
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.23.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.20
CVE-2015-2939 MEDIUM

Cross-site scripting (XSS) vulnerability in the Scribunto extension for MediaWiki allows remote attackers to inject arbitrary web script or HTML via a function name, which is not properly handled in a Lua error backtrace.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki scribunto -
CVE-2015-2940 MEDIUM

Cross-site request forgery (CSRF) vulnerability in the CheckUser extension for MediaWiki allows remote attackers to hijack the authentication of certain users for requests that retrieve sensitive user information via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki checkuser -
CVE-2015-2941 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2, when using HHVM, allows remote attackers to inject arbitrary web script or HTML via an invalid parameter in a wddx format request to api.php, which is not properly handled in an error message, related to unsafe calls to wddx_serialize_value.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.22.15
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki *
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.23.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.20
CVE-2015-2942 HIGH

MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2, when using HHVM, allows remote attackers to cause a denial of service (CPU and memory consumption) via a large number of nested entity references in an (1) SVG file or (2) XMP metadata in a PDF file, aka a "billion laughs attack," a different vulnerability than CVE-2015-2937.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.22.5
mediawiki mediawiki 1.23.7
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.22.4
mediawiki mediawiki 1.22.11
mediawiki mediawiki 1.20.4
mediawiki mediawiki 1.21.5
mediawiki mediawiki 1.22.8
mediawiki mediawiki 1.23.2
mediawiki mediawiki 1.21.7
mediawiki mediawiki 1.21.8
mediawiki mediawiki 1.23.1
mediawiki mediawiki 1.20.6
mediawiki mediawiki 1.22.3
mediawiki mediawiki 1.22.9
mediawiki mediawiki 1.22.10
mediawiki mediawiki 1.21.11
mediawiki mediawiki 1.22.15
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.21.6
mediawiki mediawiki 1.21.2
mediawiki mediawiki 1.23.0
mediawiki mediawiki 1.21.10
mediawiki mediawiki 1.23.3
mediawiki mediawiki 1.20.8
mediawiki mediawiki 1.22.2
mediawiki mediawiki 1.22.1
mediawiki mediawiki 1.21.1
mediawiki mediawiki 1.21.4
mediawiki mediawiki 1.20.2
mediawiki mediawiki 1.20.3
mediawiki mediawiki 1.23.5
mediawiki mediawiki 1.22.12
mediawiki mediawiki 1.22.13
mediawiki mediawiki 1.23.6
mediawiki mediawiki 1.22.7
mediawiki mediawiki *
mediawiki mediawiki 1.21.9
mediawiki mediawiki 1.21.3
mediawiki mediawiki 1.20.5
mediawiki mediawiki 1.22.14
mediawiki mediawiki 1.22.6
mediawiki mediawiki 1.21
mediawiki mediawiki 1.20.1
mediawiki mediawiki 1.23.4
mediawiki mediawiki 1.20.7
mediawiki mediawiki 1.23.8
mediawiki mediawiki 1.22.0
mediawiki mediawiki 1.20
CVE-2015-6727 MEDIUM

The Special:DeletedContributions page in MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 allows remote attackers to determine if an IP is autoblocked via the "Change block" text.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.0
canonical ubuntu_linux 15.04
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.25.1
CVE-2015-6728 HIGH

The ApiBase::getWatchlistUser function in MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 does not perform token comparison in constant time, which allows remote attackers to guess the watchlist token and bypass CSRF protection via a timing attack.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.25.1
CVE-2015-6729 MEDIUM

Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 allows remote attackers to inject arbitrary web script or HTML via the rel404 parameter, which is not properly handled in an error page.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.25.1
CVE-2015-6730 MEDIUM

Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 allows remote attackers to inject arbitrary web script or HTML via the f parameter, which is not properly handled in an error page, related to "ForeignAPI images."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.25.1
CVE-2015-6733 MEDIUM

GeSHi, as used in the SyntaxHighlight_GeSHi extension and MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2, allows remote attackers to cause a denial of service (resource consumption) via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.25.1
CVE-2015-6734 MEDIUM

Cross-site scripting (XSS) vulnerability in contrib/cssgen.php in the GeSHi, as used in the SyntaxHighlight_GeSHi extension and MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.25.1
CVE-2015-8001 LOW

The chunked upload API (ApiUpload) in MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 does not restrict the uploaded data to the claimed file size, which allows remote authenticated users to cause a denial of service via a chunk that exceeds the file size.

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.3
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.25.2
mediawiki mediawiki 1.25.1
CVE-2015-8002 MEDIUM

The chunked upload API (ApiUpload) in MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 allows remote authenticated users to cause a denial of service (disk consumption) via a file upload using one byte chunks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.3
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.25.2
mediawiki mediawiki 1.25.1
CVE-2015-8003 MEDIUM

MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 does not throttle file uploads, which allows remote authenticated users to have unspecified impact via multiple file uploads.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.3
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.25.2
mediawiki mediawiki 1.25.1
CVE-2015-8004 MEDIUM

MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 does not properly restrict access to revisions, which allows remote authenticated users with the viewsuppressed user right to remove revision suppressions via a crafted revisiondelete action, which returns a valid a change form.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.3
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.25.2
mediawiki mediawiki 1.25.1
CVE-2015-8005 MEDIUM

MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 uses the thumbnail ImageMagick command line argument, which allows remote attackers to obtain the installation path by reading the metadata of a PNG thumbnail file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.3
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.25.2
mediawiki mediawiki 1.25.1
CVE-2015-8008 MEDIUM

The OAuth extension for MediaWiki improperly negotiates a new client token only over Special:OAuth/initiate, which allows attackers to bypass intended IP address access restrictions by making an API request with an existing token.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
fedoraproject fedora 23
fedoraproject fedora 21
fedoraproject fedora 22
mediawiki mediawiki *
CVE-2015-8009 MEDIUM

The MWOAuthDataStore::lookup_token function in Extension:OAuth for MediaWiki 1.25.x before 1.25.3, 1.24.x before 1.24.4, and before 1.23.11 does not properly validate the signature when checking the authorization signature, which allows remote registered Consumers to use another Consumer's credentials by leveraging knowledge of the credentials.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-255,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.3
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.25.2
mediawiki mediawiki 1.25.1
CVE-2015-8622 MEDIUM

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1, when is configured with a relative URL, allows remote authenticated users to inject arbitrary web script or HTML via wikitext, as demonstrated by a wikilink to a page named "javascript:alert('XSS!')."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.3
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.3
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.26.0
mediawiki mediawiki 1.25.2
mediawiki mediawiki 1.25.1
mediawiki mediawiki 1.24.4
CVE-2015-8623 MEDIUM

The User::matchEditToken function in includes/User.php in MediaWiki before 1.23.12 and 1.24.x before 1.24.5 does not perform token comparison in constant time before returning, which allows remote attackers to guess the edit token and bypass CSRF protection via a timing attack, a different vulnerability than CVE-2015-8624.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.3
mediawiki mediawiki 1.24.2
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.24.4
CVE-2015-8624 MEDIUM

The User::matchEditToken function in includes/User.php in MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1 does not perform token comparison in constant time before determining if a debugging message should be logged, which allows remote attackers to guess the edit token and bypass CSRF protection via a timing attack, a different vulnerability than CVE-2015-8623.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.3
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.3
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.26.0
mediawiki mediawiki 1.25.2
mediawiki mediawiki 1.25.1
mediawiki mediawiki 1.24.4
CVE-2015-8625 MEDIUM

MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1 do not properly sanitize parameters when calling the cURL library, which allows remote attackers to read arbitrary files via an @ (at sign) character in unspecified POST array parameters.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.3
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.3
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.26.0
mediawiki mediawiki 1.25.2
mediawiki mediawiki 1.25.1
mediawiki mediawiki 1.24.4
CVE-2015-8626 MEDIUM

The User::randomPassword function in MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1 generates passwords smaller than $wgMinimalPasswordLength, which makes it easier for remote attackers to obtain access via a brute-force attack.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-255,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.3
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.3
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.26.0
mediawiki mediawiki 1.25.2
mediawiki mediawiki 1.25.1
mediawiki mediawiki 1.24.4
CVE-2015-8627 MEDIUM

MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1 do not properly normalize IP addresses containing zero-padded octets, which might allow remote attackers to bypass intended access restrictions by using an IP address that was not supposed to have been allowed.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.3
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.3
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.26.0
mediawiki mediawiki 1.25.2
mediawiki mediawiki 1.25.1
mediawiki mediawiki 1.24.4
CVE-2015-8628 MEDIUM

The (1) Special:MyPage, (2) Special:MyTalk, (3) Special:MyContributions, (4) Special:MyUploads, and (5) Special:AllMyUploads pages in MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1 allow remote attackers to obtain sensitive user login information via crafted links combined with page view statistics.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.24.0
mediawiki mediawiki 1.24.3
mediawiki mediawiki 1.24.2
mediawiki mediawiki 1.25.3
mediawiki mediawiki 1.25.0
mediawiki mediawiki *
mediawiki mediawiki 1.24.1
mediawiki mediawiki 1.26.0
mediawiki mediawiki 1.25.2
mediawiki mediawiki 1.25.1
mediawiki mediawiki 1.24.4
CVE-2016-6331 MEDIUM

ApiParse in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote attackers to bypass intended per-title read restrictions via a parse action to api.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.26.1
mediawiki mediawiki 1.26.3
mediawiki mediawiki 1.26.2
mediawiki mediawiki 1.27.0
mediawiki mediawiki *
mediawiki mediawiki 1.26.0
mediawiki mediawiki 1.26.4
CVE-2016-6332 MEDIUM

MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1, when $wgBlockDisablesLogin is true, might allow remote attackers to obtain sensitive information by leveraging failure to terminate sessions when a user account is blocked.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.26.1
mediawiki mediawiki 1.26.3
mediawiki mediawiki 1.26.2
mediawiki mediawiki 1.27.0
mediawiki mediawiki *
mediawiki mediawiki 1.26.0
mediawiki mediawiki 1.26.4
CVE-2016-6333 MEDIUM

Cross-site scripting (XSS) vulnerability in the CSS user subpage preview feature in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote attackers to inject arbitrary web script or HTML via the edit box in Special:MyPage/common.css.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.26.1
mediawiki mediawiki 1.26.3
mediawiki mediawiki 1.26.2
mediawiki mediawiki 1.27.0
mediawiki mediawiki *
mediawiki mediawiki 1.26.0
mediawiki mediawiki 1.26.4
CVE-2016-6334 MEDIUM

Cross-site scripting (XSS) vulnerability in the Parser::replaceInternalLinks2 method in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote attackers to inject arbitrary web script or HTML via vectors involving replacement of percent encoding in unclosed internal links.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.26.1
mediawiki mediawiki 1.26.3
mediawiki mediawiki 1.26.2
mediawiki mediawiki 1.27.0
mediawiki mediawiki *
mediawiki mediawiki 1.26.0
mediawiki mediawiki 1.26.4
CVE-2016-6335 MEDIUM

MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 does not generate head items in the context of a given title, which allows remote attackers to obtain sensitive information via a parse action to api.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.26.1
mediawiki mediawiki 1.26.3
mediawiki mediawiki 1.26.2
mediawiki mediawiki 1.27.0
mediawiki mediawiki *
mediawiki mediawiki 1.26.0
mediawiki mediawiki 1.26.4
CVE-2016-6336 MEDIUM

MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote authenticated users with undelete permissions to bypass intended suppressrevision and deleterevision restrictions and remove the revision deletion status of arbitrary file revisions by using Special:Undelete.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.26.1
mediawiki mediawiki 1.26.3
mediawiki mediawiki 1.26.2
mediawiki mediawiki 1.27.0
mediawiki mediawiki *
mediawiki mediawiki 1.26.0
mediawiki mediawiki 1.26.4
CVE-2016-6337 MEDIUM

MediaWiki 1.27.x before 1.27.1 might allow remote attackers to bypass intended session access restrictions by leveraging a call to the UserGetRights function after Session::getAllowedUserRights.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.27.0
CVE-2017-0361 LOW

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains an information disclosure flaw, where the api.log might contain passwords in plaintext.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
debian debian_linux 7.0
mediawiki mediawiki *
CVE-2017-0362 MEDIUM

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where the "Mark all pages visited" on the watchlist does not require a CSRF token.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
debian debian_linux 7.0
mediawiki mediawiki *
CVE-2017-0363 MEDIUM

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 has a flaw where Special:UserLogin?returnto=interwiki:foo will redirect to external sites.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
debian debian_linux 7.0
mediawiki mediawiki *
CVE-2017-0364 MEDIUM

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where Special:Search allows redirects to any interwiki link.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
debian debian_linux 7.0
mediawiki mediawiki *
CVE-2017-0365 LOW

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a XSS vulnerability in SearchHighlighter::highlightText() with non-default configurations.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
debian debian_linux 7.0
mediawiki mediawiki *
CVE-2017-0366 MEDIUM

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw allowing to evade SVG filter using default attribute values in DTD declaration.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 7.0
mediawiki mediawiki *
CVE-2017-0367 MEDIUM

Mediawiki before 1.28.1 / 1.27.2 contains an unsafe use of temporary directory, where having LocalisationCache directory default to system tmp directory is insecure.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-668,

Products Affected

Vendor Product Version
debian debian_linux 7.0
mediawiki mediawiki *
CVE-2017-0368 MEDIUM

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw making rawHTML mode apply to system messages.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 7.0
mediawiki mediawiki *
CVE-2017-0369 MEDIUM

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw, allowing a sysops to undelete pages, although the page is protected against it.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
debian debian_linux 7.0
mediawiki mediawiki *
CVE-2017-0370 MEDIUM

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw were Spam blacklist is ineffective on encoded URLs inside file inclusion syntax's link parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 7.0
mediawiki mediawiki *
CVE-2017-0371 MEDIUM

MediaWiki before 1.23.16, 1.24.x through 1.27.x before 1.27.2, and 1.28.x before 1.28.1 allows remote attackers to discover the IP addresses of Wiki visitors via a style="background-image: attr(title url);" attack within a DIV element that has an attacker-controlled URL in the title attribute.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2017-0372 HIGH

Parameters injection in the SyntaxHighlight extension of Mediawiki before 1.23.16, 1.27.3 and 1.28.2 might result in multiple vulnerabilities.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-74,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.27.1
debian debian_linux 7.0
mediawiki mediawiki 1.28.0
mediawiki mediawiki 1.27.2
debian debian_linux 9.0
mediawiki mediawiki 1.27.0
mediawiki mediawiki *
mediawiki mediawiki 1.28.1
CVE-2017-20175 LOW

A vulnerability classified as problematic has been found in DaSchTour matomo-mediawiki-extension up to 2.4.2 on MediaWiki. This affects an unknown part of the file Piwik.hooks.php of the component Username Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. Upgrading to version 2.4.3 is able to address this issue. The patch is named 681324e4f518a8af4bd1f93867074c728eb9923d. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-220203.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki matomo *
CVE-2017-8808 MEDIUM

MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has XSS when the $wgShowExceptionDetails setting is false and the browser sends non-standard URL escaping.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.28.2
mediawiki mediawiki 1.29.0
mediawiki mediawiki 1.28.0
debian debian_linux 9.0
mediawiki mediawiki *
mediawiki mediawiki 1.28.1
mediawiki mediawiki 1.29.1
CVE-2017-8809 HIGH

api.php in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has a Reflected File Download vulnerability.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-74,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.28.2
mediawiki mediawiki 1.29.0
mediawiki mediawiki 1.28.0
debian debian_linux 9.0
mediawiki mediawiki *
mediawiki mediawiki 1.28.1
mediawiki mediawiki 1.29.1
CVE-2017-8810 MEDIUM

MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2, when a private wiki is configured, provides different error messages for failed login attempts depending on whether the username exists, which allows remote attackers to enumerate account names and conduct brute-force attacks via a series of requests.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.28.2
mediawiki mediawiki 1.29.0
mediawiki mediawiki 1.28.0
debian debian_linux 9.0
mediawiki mediawiki *
mediawiki mediawiki 1.28.1
mediawiki mediawiki 1.29.1
CVE-2017-8811 MEDIUM

The implementation of raw message parameter expansion in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows HTML mangling attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.28.2
mediawiki mediawiki 1.29.0
mediawiki mediawiki 1.28.0
debian debian_linux 9.0
mediawiki mediawiki *
mediawiki mediawiki 1.28.1
mediawiki mediawiki 1.29.1
CVE-2017-8812 MEDIUM

MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows remote attackers to inject > (greater than) characters via the id attribute of a headline.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.28.2
mediawiki mediawiki 1.29.0
mediawiki mediawiki 1.28.0
debian debian_linux 9.0
mediawiki mediawiki *
mediawiki mediawiki 1.28.1
mediawiki mediawiki 1.29.1
CVE-2017-8814 MEDIUM

The language converter in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows attackers to replace text inside tags via a rule definition followed by "a lot of junk."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.28.2
mediawiki mediawiki 1.29.0
mediawiki mediawiki 1.28.0
debian debian_linux 9.0
mediawiki mediawiki *
mediawiki mediawiki 1.28.1
mediawiki mediawiki 1.29.1
CVE-2017-8815 MEDIUM

The language converter in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows attribute injection attacks via glossary rules.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.28.2
mediawiki mediawiki 1.29.0
mediawiki mediawiki 1.28.0
debian debian_linux 9.0
mediawiki mediawiki *
mediawiki mediawiki 1.28.1
mediawiki mediawiki 1.29.1
CVE-2018-0503 MEDIUM

Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where contrary to the documentation, $wgRateLimits entry for 'user' overrides that for 'newbie'.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.27.5
mediawiki mediawiki 1.29.3
debian debian_linux 9.0
mediawiki mediawiki 1.30.1
mediawiki mediawiki *
CVE-2018-0504 MEDIUM

Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains an information disclosure flaw in the Special:Redirect/logid

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-532,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.27.5
mediawiki mediawiki 1.29.3
debian debian_linux 9.0
mediawiki mediawiki 1.30.1
mediawiki mediawiki *
CVE-2018-0505 MEDIUM

Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where BotPasswords can bypass CentralAuth's account lock

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.27.5
mediawiki mediawiki 1.29.3
debian debian_linux 9.0
mediawiki mediawiki 1.30.1
mediawiki mediawiki *
CVE-2018-13258 MEDIUM

Mediawiki 1.31 before 1.31.1 misses .htaccess files in the provided tarball used to protect some directories that shouldn't be web accessible.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2019-12466 MEDIUM

Wikimedia MediaWiki through 1.32.1 allows CSRF.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
debian debian_linux 9.0
mediawiki mediawiki *
CVE-2019-12467 MEDIUM

MediaWiki through 1.32.1 has Incorrect Access Control (issue 1 of 3). A spammer can use Special:ChangeEmail to send out spam with no rate limiting or ability to block them. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
debian debian_linux 9.0
mediawiki mediawiki *
CVE-2019-12468 HIGH

An Incorrect Access Control vulnerability was found in Wikimedia MediaWiki 1.27.0 through 1.32.1. Directly POSTing to Special:ChangeEmail would allow for bypassing re-authentication, allowing for potential account takeover.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-306,

Products Affected

Vendor Product Version
debian debian_linux 9.0
mediawiki mediawiki *
CVE-2019-12469 MEDIUM

MediaWiki through 1.32.1 has Incorrect Access Control. Suppressed username or log in Special:EditTags are exposed. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-862,

Products Affected

Vendor Product Version
debian debian_linux 9.0
mediawiki mediawiki *
CVE-2019-12470 MEDIUM

Wikimedia MediaWiki through 1.32.1 has Incorrect Access Control. Suppressed log in RevisionDelete page is exposed. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-862,

Products Affected

Vendor Product Version
debian debian_linux 9.0
mediawiki mediawiki *
CVE-2019-12471 MEDIUM

Wikimedia MediaWiki 1.30.0 through 1.32.1 has XSS. Loading user JavaScript from a non-existent account allows anyone to create the account, and perform XSS on users loading that script. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
debian debian_linux 9.0
mediawiki mediawiki *
CVE-2019-12472 MEDIUM

An Incorrect Access Control vulnerability was found in Wikimedia MediaWiki 1.18.0 through 1.32.1. It is possible to bypass the limits on IP range blocks ($wgBlockCIDRLimit) by using the API. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2019-12473 MEDIUM

Wikimedia MediaWiki 1.27.0 through 1.32.1 might allow DoS. Passing invalid titles to the API could cause a DoS by querying the entire watchlist table. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
debian debian_linux 9.0
mediawiki mediawiki *
CVE-2019-12474 MEDIUM

Wikimedia MediaWiki 1.23.0 through 1.32.1 has an information leak. Privileged API responses that include whether a recent change has been patrolled may be cached publicly. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
debian debian_linux 9.0
mediawiki mediawiki *
CVE-2019-14807 MEDIUM

In the MobileFrontend extension 1.31 through 1.33 for MediaWiki, XSS exists within the edit summary field in includes/specials/MobileSpecialPageFeed.php.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mobilefrontend *
CVE-2019-15124 MEDIUM

In the MobileFrontend extension for MediaWiki, XSS exists within the edit summary field of the watchlist feed. This affects REL1_31, REL1_32, and REL1_33.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mobilefrontend 1.31.0
mediawiki mobilefrontend 1.33.0
mediawiki mobilefrontend 1.32.0
CVE-2019-16528 MEDIUM

An issue was discovered in the AbuseFilter extension for MediaWiki. includes/special/SpecialAbuseLog.php allows attackers to obtain sensitive information, such as deleted/suppressed usernames and summaries, from AbuseLog revision data. This affects REL1_32 and REL1_33.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-532,

Products Affected

Vendor Product Version
mediawiki abusefilter 1.32
mediawiki abusefilter 1.33
CVE-2019-16529 MEDIUM

An issue was discovered in the CheckUser extension through 1.35.0 for MediaWiki. Oversighted edit summaries are still visible in CheckUser results in violation of MediaWiki's permissions model.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mediawiki checkuser *
CVE-2019-16738 MEDIUM

In MediaWiki through 1.33.0, Special:Redirect allows information disclosure of suppressed usernames via a User ID Lookup.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-862,

Products Affected

Vendor Product Version
fedoraproject fedora 31
debian debian_linux 9.0
debian debian_linux 10.0
mediawiki mediawiki *
fedoraproject fedora 30
CVE-2019-18611 MEDIUM

An issue was discovered in the CheckUser extension through 1.34 for MediaWiki. Certain sensitive information within oversighted edit summaries made available via the MediaWiki API was potentially visible to users with various levels of access to this extension. Said users should not have been able to view these oversighted edit summaries via the MediaWiki API.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki checkuser *
CVE-2019-18612 MEDIUM

An issue was discovered in the AbuseFilter extension through 1.34 for MediaWiki. Previously hidden (restricted) AbuseFilter filters were viewable (or their differences were viewable) to unprivileged users, thus disclosing potentially sensitive information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki abusefilter *
CVE-2019-18987 MEDIUM

An issue was discovered in the AbuseFilter extension through 1.34 for MediaWiki. Once a specific abuse filter has (accidentally or otherwise) been made public, its previous versions can be exposed, thus potentially disclosing private or sensitive information within the filter's definition.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki abusefilter *
CVE-2019-19708 MEDIUM

The VisualEditor extension through 1.34 for MediaWiki allows XSS via pasted content containing an element with a data-ve-clipboard-key attribute.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki visual_editor *
CVE-2019-19709 MEDIUM

MediaWiki through 1.33.1 allows attackers to bypass the Title_blacklist protection mechanism by starting with an arbitrary title, establishing a non-resolvable redirect for the associated page, and using redirect=1 in the action API when editing that page.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
debian debian_linux 9.0
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2019-19910 MEDIUM

The MinervaNeue Skin in MediaWiki from 2019-11-05 to 2019-12-13 (1.35 and/or 1.34) mishandles certain HTML attributes, as demonstrated by IMG onmouseover= (impact is XSS) and IMG src=http (impact is disclosing the client's IP address). This can occur within a talk page topical header that is viewed within a mobile (MobileFrontend) context.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.35
mediawiki mediawiki 1.34
CVE-2020-10534 HIGH

In the GlobalBlocking extension before 2020-03-10 for MediaWiki through 1.34.0, an issue related to IP range evaluation resulted in blocked users re-gaining escalated privileges. This is related to the case in which an IP address is contained in two ranges, one of which is locally disabled.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-863,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2020-10959 MEDIUM

resources/src/mediawiki.page.ready/ready.js in MediaWiki before 1.35 allows remote attackers to force a logout and external redirection via HTML content in a MediaWiki page.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2020-10960 MEDIUM

In MediaWiki before 1.34.1, users can add various Cascading Style Sheets (CSS) classes (which can affect what content is shown or hidden in the user interface) to arbitrary DOM nodes via HTML content within a MediaWiki page. This occurs because jquery.makeCollapsible allows applying an event handler to any Cascading Style Sheets (CSS) selector. There is no known way to exploit this for cross-site scripting (XSS).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2020-12051 MEDIUM

The CentralAuth extension through REL1_34 for MediaWiki allows remote attackers to obtain sensitive hidden account information via an api.php?action=query&meta=globaluserinfo&guiuser= request. In other words, the information can be retrieved via the action API even though access would be denied when simply visiting wiki/Special:CentralAuth in a web browser.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mediawiki mediawiki -
CVE-2020-15005 LOW

In MediaWiki before 1.31.8, 1.32.x and 1.33.x before 1.33.4, and 1.34.x before 1.34.2, private wikis behind a caching server using the img_auth.php image authorization security feature may have had their files cached publicly, so any unauthorized user could view them. This occurs because Cache-Control and Vary headers were mishandled.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.1 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N 1.6 1.4

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fedoraproject fedora 32
debian debian_linux 9.0
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2020-25812 MEDIUM

An issue was discovered in MediaWiki 1.34.x before 1.34.4. On Special:Contributions, the NS filter uses unescaped messages as keys in the option key for an HTMLForm specifier. This is vulnerable to a mild XSS if one of those messages is changed to include raw HTML.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 33
mediawiki mediawiki *
CVE-2020-25813 MEDIUM

In MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4, Special:UserRights exposes the existence of hidden users.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fedoraproject fedora 33
mediawiki mediawiki *
CVE-2020-25814 MEDIUM

In MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4, XSS related to jQuery can occur. The attacker creates a message with [javascript:payload xss] and turns it into a jQuery object with mw.message().parse(). The expected result is that the jQuery object does not contain an <a> tag (or it does not have a href attribute, or it's empty, etc.). The actual result is that the object contains an <a href ="javascript... that executes when clicked.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 33
mediawiki mediawiki *
CVE-2020-25815 MEDIUM

An issue was discovered in MediaWiki 1.32.x through 1.34.x before 1.34.4. LogEventList::getFiltersDesc is insecurely using message text to build options names for an HTML multi-select field. The relevant code should use escaped() instead of text().

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 33
mediawiki mediawiki *
CVE-2020-25827 MEDIUM

An issue was discovered in the OATHAuth extension in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4. For Wikis using OATHAuth on a farm/cluster (such as via CentralAuth), rate limiting of OATH tokens is only done on a single site level. Thus, multiple requests can be made across many wikis/sites concurrently.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-307,

Products Affected

Vendor Product Version
fedoraproject fedora 33
mediawiki mediawiki *
CVE-2020-25828 MEDIUM

An issue was discovered in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4. The non-jqueryMsg version of mw.message().parse() doesn't escape HTML. This affects both message contents (which are generally safe) and the parameters (which can be based on user input). (When jqueryMsg is loaded, it correctly accepts only whitelisted tags in message contents, and escapes all parameters. Situations with an unloaded jqueryMsg are rare in practice, but can for example occur for Special:SpecialPages on a wiki with no extensions installed.)

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 33
mediawiki mediawiki 1.31.10
mediawiki mediawiki *
CVE-2020-25869 MEDIUM

An information leak was discovered in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4. Handling of actor ID does not necessarily use the correct database or correct wiki.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,

Products Affected

Vendor Product Version
fedoraproject fedora 33
mediawiki mediawiki *
CVE-2020-26120 MEDIUM

XSS exists in the MobileFrontend extension for MediaWiki before 1.34.4 because section.line is mishandled during regex section line replacement from PageGateway. Using crafted HTML, an attacker can elicit an XSS attack via jQuery's parseHTML method, which can cause image callbacks to fire even without the element being appended to the DOM.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 33
mediawiki mediawiki *
CVE-2020-26121 MEDIUM

An issue was discovered in the FileImporter extension for MediaWiki before 1.34.4. An attacker can import a file even when the target page is protected against "page creation" and the attacker should not be able to create it. This occurs because of a mishandled distinction between an upload restriction and a create restriction. An attacker cannot leverage this to overwrite anything, but can leverage this to force a wiki to have a page with a disallowed title.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,

Products Affected

Vendor Product Version
fedoraproject fedora 33
mediawiki mediawiki *
CVE-2020-27620 MEDIUM

The Cosmos Skin for MediaWiki through 1.35.0 has stored XSS because MediaWiki messages were not being properly escaped. This is related to wfMessage and Html::rawElement, as demonstrated by CosmosSocialProfile::getUserGroups.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki skin:cosmos *
CVE-2020-27621 MEDIUM

The FileImporter extension in MediaWiki through 1.35.0 was not properly attributing various user actions to a specific user's IP address. Instead, for various actions, it would report the IP address of an internal Wikimedia Foundation server by omitting X-Forwarded-For data. This resulted in an inability to properly audit and attribute various user actions performed via the FileImporter extension.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2020-27957 LOW

The RandomGameUnit extension for MediaWiki through 1.35 was not properly escaping various title-related data. When certain varieties of games were created within MediaWiki, their names or titles could be manipulated to generate stored XSS within the RandomGameUnit extension.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2020-29002 LOW

includes/CologneBlueTemplate.php in the CologneBlue skin for MediaWiki through 1.35 allows XSS via a qbfind message supplied by an administrator.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2020-29003 LOW

The PollNY extension for MediaWiki through 1.35 allows XSS via an answer option for a poll question, entered during Special:CreatePoll or Special:UpdatePoll.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2020-29004 MEDIUM

The API in the Push extension for MediaWiki through 1.35 did not require an edit token in ApiPushBase.php and therefore facilitated a CSRF attack.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2020-29005 MEDIUM

The API in the Push extension for MediaWiki through 1.35 used cleartext for ApiPush credentials, allowing for potential information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-319,CWE-522,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2020-29007

The Score extension through 0.3.0 for MediaWiki has a remote code execution vulnerability due to improper sandboxing of the GNU LilyPond executable. This allows any user with an ability to edit articles (potentially including unauthenticated anonymous users) to execute arbitrary Scheme or shell code by using crafted {{Image data to generate musical scores containing malicious code.

Products Affected

Vendor Product Version
mediawiki score *
CVE-2020-35474 MEDIUM

In MediaWiki before 1.35.1, the combination of Html::rawElement and Message::text leads to XSS because the definition of MediaWiki:recentchanges-legend-watchlistexpiry can be changed onwiki so that the output is raw HTML.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 33
mediawiki mediawiki *
CVE-2020-35475 MEDIUM

In MediaWiki before 1.35.1, the messages userrights-expiry-current and userrights-expiry-none can contain raw HTML. XSS can happen when a user visits Special:UserRights but does not have rights to change all userrights, and the table on the left side has unchangeable groups in it. (The right column with the changeable groups is not affected and is escaped correctly.)

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 33
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2020-35477 MEDIUM

MediaWiki before 1.35.1 blocks legitimate attempts to hide log entries in some situations. If one sets MediaWiki:Mainpage to Special:MyLanguage/Main Page, visits a log entry on Special:Log, and toggles the "Change visibility of selected log entries" checkbox (or a tags checkbox) next to it, there is a redirection to the main page's action=historysubmit (instead of the desired behavior in which a revision-deletion form appears).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-670,

Products Affected

Vendor Product Version
fedoraproject fedora 33
debian debian_linux 9.0
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2020-35478 MEDIUM

MediaWiki before 1.35.1 allows XSS via BlockLogFormatter.php. MediaWiki:blanknamespace potentially can be output as raw HTML with SCRIPT tags via LogFormatter::makePageLink(). This affects MediaWiki 1.33.0 and later.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 33
mediawiki mediawiki *
CVE-2020-35479 MEDIUM

MediaWiki before 1.35.1 allows XSS via BlockLogFormatter.php. Language::translateBlockExpiry itself does not escape in all code paths. For example, the return of Language::userTimeAndDate is is always unsafe for HTML in a month value. This affects MediaWiki 1.12.0 and later.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 33
debian debian_linux 9.0
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2020-35480 MEDIUM

An issue was discovered in MediaWiki before 1.35.1. Missing users (accounts that don't exist) and hidden users (accounts that have been explicitly hidden due to being abusive, or similar) that the viewer cannot see are handled differently, exposing sensitive information about the hidden status to unprivileged viewers. This exists on various code paths.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-203,

Products Affected

Vendor Product Version
fedoraproject fedora 33
debian debian_linux 9.0
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2020-35622 MEDIUM

An issue was discovered in the GlobalUsage extension for MediaWiki through 1.35.1. SpecialGlobalUsage.php calls WikiMap::makeForeignLink unsafely. The $page variable within the formatItem function was not being properly escaped, allowing for XSS under certain conditions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2020-35623 MEDIUM

An issue was discovered in the CasAuth extension for MediaWiki through 1.35.1. Due to improper username validation, it allowed user impersonation with trivial manipulations of certain characters within a given username. An ordinary user may be able to login as a "bureaucrat user" who has a similar username, as demonstrated by usernames that differ only in (1) bidirectional override symbols or (2) blank space.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-706,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2020-35624 MEDIUM

An issue was discovered in the SecurePoll extension for MediaWiki through 1.35.1. The non-admin vote list contains a full vote timestamp, which may provide unintended clues about how a voting process unfolded.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-203,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2020-35625 MEDIUM

An issue was discovered in the Widgets extension for MediaWiki through 1.35.1. Any user with the ability to edit pages within the Widgets namespace could call any static function within any class (defined within PHP or MediaWiki) via a crafted HTML comment, related to a Smarty template. For example, a person in the Widget Editors group could use \MediaWiki\Shell\Shell::command within a comment.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-862,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2020-35626 MEDIUM

An issue was discovered in the PushToWatch extension for MediaWiki through 1.35.1. The primary form did not implement an anti-CSRF token and therefore was completely vulnerable to CSRF attacks against onSkinAddFooterLinks in PushToWatch.php.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2020-6163 MEDIUM

The WikibaseMediaInfo extension 1.35 for MediaWiki allows XSS because of improper template syntax within the PropertySuggestionsWidget template (in the templates/search/PropertySuggestionsWidget.mustache+dom file).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.35
CVE-2021-30152 MEDIUM

An issue was discovered in MediaWiki before 1.31.13 and 1.32.x through 1.35.x before 1.35.2. When using the MediaWiki API to "protect" a page, a user is currently able to protect to a higher level than they currently have permissions for.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
fedoraproject fedora 33
debian debian_linux 9.0
fedoraproject fedora 34
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2021-30153

An issue was discovered in the VisualEditor extension in MediaWiki before 1.31.13, and 1.32.x through 1.35.x before 1.35.2. . When using VisualEditor to edit a MediaWiki user page belonging to an existing, but hidden, user, VisualEditor will disclose that the user exists. (It shouldn't because they are hidden.) This is related to ApiVisualEditor.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-30154 MEDIUM

An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. On Special:NewFiles, all the mediastatistics-header-* messages are output in HTML unescaped, leading to XSS.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 33
fedoraproject fedora 34
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2021-30155 MEDIUM

An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. ContentModelChange does not check if a user has correct permissions to create and set the content model of a nonexistent page.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-862,

Products Affected

Vendor Product Version
fedoraproject fedora 33
debian debian_linux 9.0
fedoraproject fedora 34
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2021-30156 MEDIUM

An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. Special:Contributions can leak that a "hidden" user exists.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
fedoraproject fedora 33
fedoraproject fedora 34
mediawiki mediawiki *
CVE-2021-30157 MEDIUM

An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. On ChangesList special pages such as Special:RecentChanges and Special:Watchlist, some of the rcfilters-filter-* label messages are output in HTML unescaped, leading to XSS.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 33
fedoraproject fedora 34
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2021-30158 MEDIUM

An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. Blocked users are unable to use Special:ResetTokens. This has security relevance because a blocked user might have accidentally shared a token, or might know that a token has been compromised, and yet is not able to block any potential future use of the token by an unauthorized party.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
fedoraproject fedora 33
debian debian_linux 9.0
fedoraproject fedora 34
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2021-30159 MEDIUM

An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. Users can bypass intended restrictions on deleting pages in certain "fast double move" situations. MovePage::isValidMoveTarget() uses FOR UPDATE, but it's only called if Title::getArticleID() returns non-zero with no special flags. Next, MovePage::moveToInternal() will delete the page if getArticleID(READ_LATEST) is non-zero. Therefore, if the page is missing in the replica DB, isValidMove() will return true, and then moveToInternal() will unconditionally delete the page if it can be found in the master.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fedoraproject fedora 33
debian debian_linux 9.0
fedoraproject fedora 34
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2021-31545 MEDIUM

An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. The page_recent_contributors leaked the existence of certain deleted MediaWiki usernames, related to rev_deleted.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-31546 MEDIUM

An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It incorrectly logged sensitive suppression deletions, which should not have been visible to users with access to view AbuseFilter log data.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-532,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-31547 MEDIUM

An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. Its AbuseFilterCheckMatch API reveals suppressed edits and usernames to unprivileged users through the iteration of crafted AbuseFilter rules.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-31548 MEDIUM

An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. A MediaWiki user who is partially blocked or was unsuccessfully blocked could bypass AbuseFilter and have their edits completed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-31549 MEDIUM

An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. The Special:AbuseFilter/examine form allowed for the disclosure of suppressed MediaWiki usernames to unprivileged users.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-31550 LOW

An issue was discovered in the CommentBox extension for MediaWiki through 1.35.2. Via crafted configuration variables, a malicious actor could introduce XSS payloads into various layers.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-31551 MEDIUM

An issue was discovered in the PageForms extension for MediaWiki through 1.35.2. Crafted payloads for Token-related query parameters allowed for XSS on certain PageForms-managed MediaWiki pages.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-31552 MEDIUM

An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It incorrectly executed certain rules related to blocking accounts after account creation. Such rules would allow for user accounts to be created while blocking only the IP address used to create an account (and not the user account itself). Such rules could also be used by a nefarious, unprivileged user to catalog and enumerate any number of IP addresses related to these account creations.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N 2.8 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-31553 MEDIUM

An issue was discovered in the CheckUser extension for MediaWiki through 1.35.2. MediaWiki usernames with trailing whitespace could be stored in the cu_log database table such that denial of service occurred for certain CheckUser extension pages and functionality. For example, the attacker could turn off Special:CheckUserLog and thus interfere with usage tracking.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L 3.9 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-428,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-31554 MEDIUM

An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It improperly handled account blocks for certain automatically created MediaWiki user accounts, thus allowing nefarious users to remain unblocked.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N 2.8 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-31555 MEDIUM

An issue was discovered in the Oauth extension for MediaWiki through 1.35.2. It did not validate the oarc_version (aka oauth_registered_consumer.oarc_version) parameter's length.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-31556 HIGH

An issue was discovered in the Oauth extension for MediaWiki through 1.35.2. MWOAuthConsumerSubmitControl.php does not ensure that the length of an RSA key will fit in a MySQL blob.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-1284,

Products Affected

Vendor Product Version
fedoraproject fedora 33
fedoraproject fedora 35
fedoraproject fedora 34
mediawiki mediawiki *
CVE-2021-35197 MEDIUM

In MediaWiki before 1.31.15, 1.32.x through 1.35.x before 1.35.3, and 1.36.x before 1.36.1, bots have certain unintended API access. When a bot account has a "sitewide block" applied, it is able to still "purge" pages through the MediaWiki Action API (which a "sitewide block" should have prevented).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,

Products Affected

Vendor Product Version
fedoraproject fedora 33
debian debian_linux 11.0
fedoraproject fedora 35
debian debian_linux 9.0
fedoraproject fedora 34
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2021-36125 MEDIUM

An issue was discovered in the CentralAuth extension in MediaWiki through 1.36. The Special:GlobalRenameRequest page is vulnerable to infinite loops and denial of service attacks when a user's current username is beyond an arbitrary maximum configuration value (MaxNameChars).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-36126 HIGH

An issue was discovered in the AbuseFilter extension in MediaWiki through 1.36. If the MediaWiki:Abusefilter-blocker message is invalid within the content language, the filter user falls back to the English version, but that English version could also be invalid on a wiki. This would result in a fatal error, and potentially fail to block or restrict a potentially nefarious user.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-36127 MEDIUM

An issue was discovered in the CentralAuth extension in MediaWiki through 1.36. The Special:GlobalUserRights page provided search results which, for a suppressed MediaWiki user, were different than for any other user, thus easily disclosing suppressed accounts (which are supposed to be completely hidden).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-922,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-36128 HIGH

An issue was discovered in the CentralAuth extension in MediaWiki through 1.36. Autoblocks for CentralAuth-issued suppression blocks are not properly implemented.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-755,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-36129 MEDIUM

An issue was discovered in the Translate extension in MediaWiki through 1.36. The Aggregategroups Action API module does not validate the parameter for aggregategroup when action=remove is set, thus allowing users with the translate-manage right to silently delete various groups' metadata.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-732,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-36130 LOW

An XSS issue was discovered in the SocialProfile extension in MediaWiki through 1.36. Within several gift-related special pages, a privileged user with the awardmanage right could inject arbitrary HTML and JavaScript within various gift-related data fields. The attack could easily propagate across many pages for many users.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-36131 LOW

An XSS issue was discovered in the SportsTeams extension in MediaWiki through 1.36. Within several special pages, a privileged user could inject arbitrary HTML and JavaScript within various data fields. The attack could easily propagate across many pages for many users.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-36132 MEDIUM

An issue was discovered in the FileImporter extension in MediaWiki through 1.36. For certain relaxed configurations of the $wgFileImporterRequiredRight variable, it might not validate all appropriate user rights, thus allowing a user with insufficient rights to perform operations (specifically file uploads) that they should not be allowed to perform.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-41798 MEDIUM

MediaWiki before 1.36.2 allows XSS. Month related MediaWiki messages are not escaped before being used on the Special:Search results page.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 33
fedoraproject fedora 35
fedoraproject fedora 34
mediawiki mediawiki *
CVE-2021-41799 MEDIUM

MediaWiki before 1.36.2 allows a denial of service (resource consumption because of lengthy query processing time). ApiQueryBacklinks (action=query&list=backlinks) can cause a full table scan.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-770,

Products Affected

Vendor Product Version
fedoraproject fedora 33
fedoraproject fedora 35
fedoraproject fedora 34
mediawiki mediawiki *
CVE-2021-41800 MEDIUM

MediaWiki before 1.36.2 allows a denial of service (resource consumption because of lengthy query processing time). Visiting Special:Contributions can sometimes result in a long running SQL query because PoolCounter protection is mishandled.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-770,

Products Affected

Vendor Product Version
fedoraproject fedora 33
fedoraproject fedora 35
fedoraproject fedora 34
mediawiki mediawiki *
CVE-2021-41801 MEDIUM

The ReplaceText extension through 1.41 for MediaWiki has Incorrect Access Control. When a user is blocked after submitting a replace job, the job is still run, even if it may be run at a later time (due to the job queue backlog)

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-42040 MEDIUM

An issue was discovered in MediaWiki through 1.36.2. A parser function related to loop control allowed for an infinite loop (and php-fpm hang) within the Loops extension because egLoopsCountLimit is mishandled. This could lead to memory exhaustion.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-42041 MEDIUM

An issue was discovered in CentralAuth in MediaWiki through 1.36.2. The rightsnone MediaWiki message was not being properly sanitized and allowed for the injection and execution of HTML and JavaScript via the setchange log.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-42042 LOW

An issue was discovered in SpecialEditGrowthConfig in the GrowthExperiments extension in MediaWiki through 1.36.2. The growthexperiments-edit-config-error-invalid-title MediaWiki message was not being properly sanitized and allowed for the injection and execution of HTML and JavaScript.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-42043 MEDIUM

An issue was discovered in Special:MediaSearch in the MediaSearch extension in MediaWiki through 1.36.2. The suggestion text (a parameter to mediasearch-did-you-mean) was not being properly sanitized and allowed for the injection and execution of HTML and JavaScript via the intitle: search operator within the query.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-42044 LOW

An issue was discovered in the Mentor dashboard in the GrowthExperiments extension in MediaWiki through 1.36.2. The Growthexperiments-mentor-dashboard-mentee-overview-add-filter-total-edits-headline, growthexperiments-mentor-dashboard-mentee-overview-add-filter-starred-headline, growthexperiments-mentor-dashboard-mentee-overview-info-text, growthexperiments-mentor-dashboard-mentee-overview-info-legend-headline, and growthexperiments-mentor-dashboard-mentee-overview-active-ago MediaWiki messages were not being properly sanitized and allowed for the injection and execution of HTML and JavaScript.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-42045

An issue was discovered in SecurePoll in the Growth extension in MediaWiki through 1.36.2. Simple polls allow users to create alerts by changing their User-Agent HTTP header and submitting a vote.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-42046

An issue was discovered in the GlobalWatchlist extension in MediaWiki through 1.36.2. The rev-deleted-user and ntimes messages were not properly escaped and allowed for users to inject HTML and JavaScript.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-42047

An issue was discovered in the Growth extension in MediaWiki through 1.36.2. On any Wiki with the Mentor Dashboard feature enabled, users can login with a mentor account and trigger an XSS payload (such as alert) via Growthexperiments-mentor-dashboard-mentee-overview-no-js-fallback.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-42048

An issue was discovered in the Growth extension in MediaWiki through 1.36.2. Any admin can add arbitrary JavaScript code to the Newcomer home page footer, which can be executed by viewers with zero edits.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-42049

An issue was discovered in the Translate extension in MediaWiki through 1.36.2. Oversighters cannot undo revisions or oversight on pages where they suppressed information (such as PII). This allows oversighters to whitewash revisions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-44854

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. The REST API publicly caches results from private wikis.

Products Affected

Vendor Product Version
mediawiki mediawiki 1.37.0
mediawiki mediawiki *
CVE-2021-44855

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. There is Blind Stored XSS via a URL to the Upload Image feature.

Products Affected

Vendor Product Version
mediawiki mediawiki 1.37.0
mediawiki mediawiki *
CVE-2021-44856

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. A title blocked by AbuseFilter can be created via Special:ChangeContentModel due to the mishandling of the EditFilterMergedContent hook return value.

Products Affected

Vendor Product Version
mediawiki mediawiki 1.37.0
mediawiki mediawiki *
CVE-2021-44857 MEDIUM

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. It is possible to use action=mcrundo followed by action=mcrrestore to replace the content of any arbitrary page (that the user doesn't have edit rights for). This applies to any public wiki, or a private wiki that has at least one page set in $wgWhitelistRead.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-862,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-44858 MEDIUM

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. It is possible to use action=edit&undo= followed by action=mcrundo and action=mcrrestore to view private pages on a private wiki that has at least one page set in $wgWhitelistRead.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-45038 MEDIUM

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. By using an action=rollback query, attackers can view private wiki contents.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-45471 MEDIUM

In MediaWiki through 1.37, blocked IP addresses are allowed to edit EntitySchema items.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fedoraproject fedora 35
mediawiki mediawiki *
CVE-2021-45472 MEDIUM

In MediaWiki through 1.37, XSS can occur in Wikibase because an external identifier property can have a URL format that includes a $1 formatter substitution marker, and the javascript: URL scheme (among others) can be used.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 35
mediawiki mediawiki *
CVE-2021-45473 MEDIUM

In MediaWiki through 1.37, Wikibase item descriptions allow XSS, which is triggered upon a visit to an action=info URL (aka a page-information sidebar).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 35
mediawiki mediawiki *
CVE-2021-45474 MEDIUM

In MediaWiki through 1.37, the Special:ImportFile URI (aka FileImporter) allows XSS, as demonstrated by the clientUrl parameter.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 35
mediawiki mediawiki *
CVE-2021-46146 LOW

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. The WikibaseMediaInfo component is vulnerable to XSS via the caption fields for a given media file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-46147 MEDIUM

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. MassEditRegex allows CSRF.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-46148 MEDIUM

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. Some unprivileged users can view confidential information (e.g., IP addresses and User-Agent headers for election traffic) on a testwiki SecurePoll instance.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-46149 MEDIUM

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. A denial of service (resource consumption) can be accomplished by searching for a very long key in a Language Name Search.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2021-46150 LOW

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. Special:CheckUserLog allows CheckUser XSS because of date mishandling, as demonstrated by an XSS payload in MediaWiki:October.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-21710 MEDIUM

ShortDescription is a MediaWiki extension that provides local short description support. A cross-site scripting (XSS) vulnerability exists in versions prior to 2.3.4. On a wiki that has the ShortDescription enabled, XSS can be triggered on any page or the page with the action=info parameter, which displays the shortdesc property. This is achieved using the wikitext `{{SHORTDESC:&lt;img src=x onerror=alert()&gt;}}`. This issue has a patch in version 2.3.4.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7
security-advisories@github.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mediawiki shortdescription *
CVE-2022-28201

An issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. Users with the editinterface permission can trigger infinite recursion, because a bare local interwiki is mishandled for the mainpage message.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H 0.8 3.6

Products Affected

Vendor Product Version
debian debian_linux 11.0
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2022-28202 MEDIUM

An XSS issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. The widthheight, widthheightpage, and nbytes properties of messages are not escaped when used in galleries or Special:RevisionDelete.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 36
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2022-28203

A denial-of-service issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. When many files exist, requesting Special:NewFiles with actor as a condition can result in a very long running query.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
debian debian_linux 11.0
debian debian_linux 10.0
mediawiki mediawiki *
CVE-2022-28204

A denial-of-service issue was discovered in MediaWiki 1.37.x before 1.37.2. Rendering of w/index.php?title=Special%3AWhatLinksHere&target=Property%3AP31&namespace=1&invert=1 can take more than thirty seconds. There is a DDoS risk.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-28205 HIGH

An issue was discovered in MediaWiki through 1.37.1. The CentralAuth extension mishandles a ttl issue for groups expiring in the future.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-28206 HIGH

An issue was discovered in MediaWiki through 1.37.1. ImportPlanValidator.php in the FileImporter extension mishandles the check for edit rights.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-28209 HIGH

An issue was discovered in Mediawiki through 1.37.1. The check for the override-antispoof permission in the AntiSpoof extension is incorrect.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-28323 MEDIUM

An issue was discovered in MediaWiki through 1.37.2. The SecurePoll extension allows a leak because sorting by timestamp is supported,

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-29547 MEDIUM

The CreateRedirect extension before 2022-04-14 for MediaWiki does not properly check whether the user has permissions to edit the target page. This could lead to an unauthorised (or blocked) user being able to edit a page.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
mediawiki createredirect *
CVE-2022-29903 MEDIUM

The Private Domains extension for MediaWiki through 1.37.2 (before 1ad65d4c1c199b375ea80988d99ab51ae068f766) allows CSRF for editing pages that store the extension's configuration. The attacker must trigger a POST request to Special:PrivateDomains.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-29904 HIGH

The SemanticDrilldown extension for MediaWiki through 1.37.2 (before e688bdba6434591b5dff689a45e4d53459954773) allows SQL injection with certain '-' and '_' constraints.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-29905 MEDIUM

The FanBoxes extension for MediaWiki through 1.37.2 (before 027ffb0b9d6fe0d823810cf03f5b562a212162d4) allows Special:UserBoxes CSRF.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-29906 HIGH

The admin API module in the QuizGame extension for MediaWiki through 1.37.2 (before 665e33a68f6fa1167df99c0aa18ed0157cdf9f66) omits a check for the quizadmin user.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-862,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-29907 MEDIUM

The Nimbus skin for MediaWiki through 1.37.2 (before 6f9c8fb868345701d9544a54d9752515aace39df) allows XSS in Advertise link messages.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-29969 MEDIUM

The RSS extension before 2022-04-29 for MediaWiki allows XSS via an rss element (if the feed is in $wgRSSUrlWhitelist and $wgRSSAllowLinkTag is true).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki rss_for_mediawiki *
CVE-2022-34750 MEDIUM

An issue was discovered in MediaWiki through 1.38.1. The lemma length of a Wikibase lexeme is currently capped at a thousand characters. Unfortunately, this length is not validated, allowing much larger lexemes to be created, which introduces various denial-of-service attack vectors within the Wikibase and WikibaseLexeme extensions. This is related to Special:NewLexeme and Special:NewProperty.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-770,

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-34911 MEDIUM

An issue was discovered in MediaWiki before 1.35.7, 1.36.x and 1.37.x before 1.37.3, and 1.38.x before 1.38.1. XSS can occur in configurations that allow a JavaScript payload in a username. After account creation, when it sets the page title to "Welcome" followed by the username, the username is not escaped: SpecialCreateAccount::successfulAction() calls ::showSuccessPage() with a message as second parameter, and OutputPage::setPageTitle() uses text().

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.38.0
fedoraproject fedora 37
fedoraproject fedora 36
mediawiki mediawiki *
CVE-2022-34912 MEDIUM

An issue was discovered in MediaWiki before 1.37.3 and 1.38.x before 1.38.1. The contributions-title, used on Special:Contributions, is used as page title without escaping. Hence, in a non-default configuration where a username contains HTML entities, it won't be escaped.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mediawiki mediawiki 1.38.0
fedoraproject fedora 37
fedoraproject fedora 36
mediawiki mediawiki *
CVE-2022-39193

An issue was discovered in the CheckUser extension for MediaWiki through 1.39.x. Various components of this extension can expose information on the performer of edits and logged actions. This information should not allow public viewing: it is supposed to be viewable only by users with suppression rights.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

Products Affected

Vendor Product Version
mediawiki mediawiki 1.39.1
mediawiki mediawiki 1.39.0
CVE-2022-39194

An issue was discovered in the MediaWiki through 1.38.2. The community configuration pages for the GrowthExperiments extension could cause a site to become unavailable due to insufficient validation when certain actions (including page moves) were performed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.9 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H 1.2 3.6

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-41765

An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x before 1.37.5, and 1.38.x before 1.38.3. HTMLUserTextField exposes the existence of hidden users.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-41766

An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x before 1.37.5, and 1.38.x before 1.38.3. Upon an action=rollback operation, the alreadyrolled message can leak a user name (when the user has been revision deleted/suppressed).

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-41767

An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x before 1.37.5, and 1.38.x before 1.38.3. When changes made by an IP address are reassigned to a user (using reassignEdits.php), the changes will still be attributed to the IP address on Special:Contributions when doing a range lookup.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2022-4561

A vulnerability classified as problematic has been found in SemanticDrilldown Extension. Affected is the function printFilterLine of the file includes/specials/SDBrowseDataPage.php of the component GET Parameter Handler. The manipulation of the argument value leads to cross site scripting. It is possible to launch the attack remotely. The name of the patch is 6e18cf740a4548166c1d95f6d3a28541d298a3aa. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-215964.

Products Affected

Vendor Product Version
mediawiki semantic_drilldown *
CVE-2022-47927

An issue was discovered in MediaWiki before 1.35.9, 1.36.x through 1.38.x before 1.38.5, and 1.39.x before 1.39.1. When installing with a pre-existing data directory that has weak permissions, the SQLite files are created with file mode 0644, i.e., world readable to local users. These files include credentials data.

Products Affected

Vendor Product Version
mediawiki mediawiki 1.39.0
fedoraproject fedora 37
mediawiki mediawiki *
CVE-2023-22909

An issue was discovered in MediaWiki before 1.35.9, 1.36.x through 1.38.x before 1.38.5, and 1.39.x before 1.39.1. SpecialMobileHistory allows remote attackers to cause a denial of service because database queries are slow.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

Products Affected

Vendor Product Version
mediawiki mediawiki 1.39.0
fedoraproject fedora 37
mediawiki mediawiki *
CVE-2023-22910

An issue was discovered in MediaWiki before 1.35.9, 1.36.x through 1.38.x before 1.38.5, and 1.39.x before 1.39.1. There is XSS in Wikibase date formatting via wikibase-time-precision-* fields. This allows JavaScript execution by staff/admin users who do not intentionally have the editsitejs capability.

Products Affected

Vendor Product Version
mediawiki mediawiki 1.39.0
mediawiki mediawiki *
CVE-2023-22911

An issue was discovered in MediaWiki before 1.35.9, 1.36.x through 1.38.x before 1.38.5, and 1.39.x before 1.39.1. E-Widgets does widget replacement in HTML attributes, which can lead to XSS, because widget authors often do not expect that their widget is executed in an HTML attribute context.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki 1.39.0
fedoraproject fedora 37
mediawiki mediawiki *
CVE-2023-22912

An issue was discovered in MediaWiki before 1.35.9, 1.36.x through 1.38.x before 1.38.5, and 1.39.x before 1.39.1. CheckUser TokenManager insecurely uses AES-CTR encryption with a repeated (aka re-used) nonce, allowing an adversary to decrypt.

Products Affected

Vendor Product Version
mediawiki mediawiki 1.39.0
mediawiki mediawiki *
CVE-2023-22945

In the GrowthExperiments extension for MediaWiki through 1.39, the growthmanagementorlist API allows blocked users (blocked in ApiManageMentorList) to enroll as mentors or edit any of their mentorship-related properties.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N 2.8 1.4

Products Affected

Vendor Product Version
fedoraproject fedora 37
mediawiki mediawiki *
CVE-2023-29137

An issue was discovered in the GrowthExperiments extension for MediaWiki through 1.39.3. The UserImpactHandler for GrowthExperiments inadvertently returns the timezone preference for arbitrary users, which can be used to de-anonymize users.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 2.8 1.4

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2023-29139

An issue was discovered in the CheckUser extension for MediaWiki through 1.39.3. When a user with checkuserlog permissions makes many CheckUserLog API requests in some configurations, denial of service can occur (RequestTimeoutException or upstream request timeout).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2023-29140

An issue was discovered in the GrowthExperiments extension for MediaWiki through 1.39.3. Attackers might be able to see edits for which the username has been hidden, because there is no check for rev_deleted.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2023-29141

An issue was discovered in MediaWiki before 1.35.10, 1.36.x through 1.38.x before 1.38.6, and 1.39.x before 1.39.3. An auto-block can occur for an untrusted X-Forwarded-For header.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
fedoraproject fedora 37
mediawiki mediawiki *
CVE-2023-3550

Mediawiki v1.40.0 does not validate namespaces used in XML files. Therefore, if the instance administrator allows XML file uploads, a remote attacker with a low-privileged user account can use this exploit to become an administrator by sending a malicious link to the instance administrator.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.0 CRITICAL CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H 2.3 6.0
help@fluidattacks.com 7.3 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N 2.1 5.2

Products Affected

Vendor Product Version
debian debian_linux 11.0
mediawiki mediawiki 1.40.0
debian debian_linux 10.0
CVE-2023-36674

An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, 1.39.x before 1.39.4, and 1.40.x before 1.40.1. It is possible to bypass the Bad image list (aka badFile) by using the thumb parameter (aka Manualthumb) of the File syntax.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

Products Affected

Vendor Product Version
mediawiki mediawiki 1.40.0
mediawiki mediawiki *
CVE-2023-36675

An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, and 1.39.x before 1.39.4. BlockLogFormatter.php in BlockLogFormatter allows XSS in the partial blocks feature.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2023-37251

An issue was discovered in the GoogleAnalyticsMetrics extension for MediaWiki through 1.39.3. The googleanalyticstrackurl parser function does not properly escape JavaScript in the onclick handler and does not prevent use of javascript: URLs.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2023-37254

An issue was discovered in the Cargo extension for MediaWiki through 1.39.3. XSS can occur in Special:CargoQuery via a crafted page item when using the default format.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2023-37255

An issue was discovered in the CheckUser extension for MediaWiki through 1.39.3. In Special:CheckUser, a check of the "get edits" type is vulnerable to HTML injection through the User-Agent HTTP request header.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2023-37256

An issue was discovered in the Cargo extension for MediaWiki through 1.39.3. It allows one to store javascript: URLs in URL fields, and automatically links these URLs.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2023-37300

An issue was discovered in the CheckUserLog API in the CheckUser extension for MediaWiki through 1.39.3. There is incorrect access control for visibility of hidden users.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2023-37301

An issue was discovered in SubmitEntityAction in Wikibase in MediaWiki through 1.39.3. Because it doesn't use EditEntity for undo and restore, the intended interaction with AbuseFilter does not occur.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2023-37302

An issue was discovered in SiteLinksView.php in Wikibase in MediaWiki through 1.39.3. There is XSS via a crafted badge title attribute. This is also related to lack of escaping in wbTemplate (from resources/wikibase/templates.js) for quotes (which can be in a title attribute).

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2023-37303

An issue was discovered in the CheckUser extension for MediaWiki through 1.39.3. In certain situations, an attempt to block a user fails after a temporary browser hang and a DBQueryDisconnectedError error message.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2023-37304

An issue was discovered in the DoubleWiki extension for MediaWiki through 1.39.3. includes/DoubleWiki.php allows XSS via the column alignment feature.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2023-37305

An issue was discovered in the ProofreadPage (aka Proofread Page) extension for MediaWiki through 1.39.3. In includes/Page/PageContentHandler.php and includes/Page/PageDisplayHandler.php, hidden users can be exposed via public interfaces.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2023-45360

An issue was discovered in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. There is XSS in youhavenewmessagesmanyusers and youhavenewmessages i18n messages. This is related to MediaWiki:Youhavenewmessagesfromusers.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki 1.40.0
mediawiki mediawiki *
CVE-2023-45362

An issue was discovered in DifferenceEngine.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. diff-multi-sameuser (aka "X intermediate revisions by the same user not shown") ignores username suppression. This is an information leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 2.8 1.4

Products Affected

Vendor Product Version
mediawiki mediawiki 1.40.0
mediawiki mediawiki *
CVE-2023-45363

An issue was discovered in ApiPageSet.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It allows attackers to cause a denial of service (unbounded loop and RequestTimeoutException) when querying pages redirected to other variants with redirects and converttitles set.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
debian debian_linux 11.0
mediawiki mediawiki 1.40.0
debian debian_linux 12.0
mediawiki mediawiki *
CVE-2023-45364

An issue was discovered in includes/page/Article.php in MediaWiki 1.36.x through 1.39.x before 1.39.5 and 1.40.x before 1.40.1. Deleted revision existence is leaked due to incorrect permissions being checked. This reveals that a given revision ID belonged to the given page title, and its timestamp, both of which are not supposed to be public information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

Products Affected

Vendor Product Version
debian debian_linux 11.0
mediawiki mediawiki 1.40.0
debian debian_linux 12.0
mediawiki mediawiki *
CVE-2023-45367

An issue was discovered in the CheckUser extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. A user can use a rest.php/checkuser/v0/useragent-clienthints/revision/ URL to store an arbitrary number of rows in cu_useragent_clienthints, leading to a denial of service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

Products Affected

Vendor Product Version
mediawiki mediawiki 1.40.0
mediawiki mediawiki *
CVE-2023-45369

An issue was discovered in the PageTriage extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. Usernames of hidden users are exposed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 2.8 1.4

Products Affected

Vendor Product Version
mediawiki mediawiki 1.40.0
mediawiki mediawiki *
CVE-2023-45370

An issue was discovered in the SportsTeams extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. SportsTeams: Special:SportsManagerLogo and Special:SportsTeamsManagerLogo do not check for the sportsteamsmanager user right, and thus an attacker may be able to affect pages that are concerned with sports teams.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

Products Affected

Vendor Product Version
mediawiki mediawiki 1.40.0
mediawiki mediawiki *
CVE-2023-45371

An issue was discovered in the Wikibase extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. There is no rate limit for merging items.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
mediawiki mediawiki 1.40.0
mediawiki mediawiki *
CVE-2023-45372

An issue was discovered in the Wikibase extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. During item merging, ItemMergeInteractor does not have an edit filter running (e.g., AbuseFilter).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

Products Affected

Vendor Product Version
mediawiki mediawiki 1.40.0
mediawiki mediawiki *
CVE-2023-45373

An issue was discovered in the ProofreadPage extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. XSS can occur via formatNumNoSeparators.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki 1.40.0
mediawiki mediawiki *
CVE-2023-45374

An issue was discovered in the SportsTeams extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It does not check for the anti-CSRF edit token in Special:SportsTeamsManager and Special:UpdateFavoriteTeams.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

Products Affected

Vendor Product Version
mediawiki mediawiki 1.40.0
mediawiki mediawiki *
CVE-2023-51704

An issue was discovered in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. In includes/logging/RightsLogFormatter.php, group-*-member messages can result in XSS on Special:log/rights.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-23171

An issue was discovered in the CampaignEvents extension in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. The Special:EventDetails page allows XSS via the x-xss language setting for internationalization (i18n).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-23172

An issue was discovered in the CheckUser extension in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. XSS can occur via message definitions. e.g., in SpecialCheckUserLog.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-23173

An issue was discovered in the Cargo extension in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. The Special:Drilldown page allows XSS via artist, album, and position parameters because of applied filter values in drilldown/CargoAppliedFilter.php.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-23174

An issue was discovered in the PageTriage extension in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. XSS can occur via the rev-deleted-user, pagetriage-tags-quickfilter-label, pagetriage-triage, pagetriage-filter-date-range-format-placeholder, pagetriage-filter-date-range-to, pagetriage-filter-date-range-from, pagetriage-filter-date-range-heading, pagetriage-filter-set-button, or pagetriage-filter-reset-button message.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-23177

An issue was discovered in the WatchAnalytics extension in MediaWiki before 1.40.2. XSS can occur via the Special:PageStatistics page parameter.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-23178

An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-23179

An issue was discovered in the GlobalBlocking extension in MediaWiki before 1.40.2. For a Special:GlobalBlock?uselang=x-xss URI, i18n-based XSS can occur via the parentheses message. This affects subtitle links in buildSubtitleLinks.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-34500

An issue was discovered in the UnlinkedWikibase extension in MediaWiki before 1.39.6, 1.40.x before 1.40.2, and 1.41.x before 1.41.1. XSS can occur through an interface message. Error messages (in the $err var) are not escaped before being passed to Html::rawElement() in the getError() function in the Hooks class.

Products Affected

Vendor Product Version
fedoraproject fedora 40
mediawiki mediawiki *
CVE-2024-34502

An issue was discovered in WikibaseLexeme in MediaWiki before 1.39.6, 1.40.x before 1.40.2, and 1.41.x before 1.41.1. Loading Special:MergeLexemes will (attempt to) make an edit that merges the from-id to the to-id, even if the request was not a POST request, and even if it does not contain an edit token.

Products Affected

Vendor Product Version
fedoraproject fedora 40
mediawiki mediawiki *
CVE-2024-34506

An issue was discovered in includes/specials/SpecialMovePage.php in MediaWiki before 1.39.7, 1.40.x before 1.40.3, and 1.41.x before 1.41.1. If a user with the necessary rights to move the page opens Special:MovePage for a page with tens of thousands of subpages, then the page will exceed the maximum request time, leading to a denial of service.

Products Affected

Vendor Product Version
fedoraproject fedora 40
mediawiki mediawiki *
CVE-2024-34507

An issue was discovered in includes/CommentFormatter/CommentParser.php in MediaWiki before 1.39.7, 1.40.x before 1.40.3, and 1.41.x before 1.41.1. XSS can occur because of mishandling of the 0x1b character, as demonstrated by Special:RecentChanges#%1b0000000.

Products Affected

Vendor Product Version
fedoraproject fedora 40
mediawiki mediawiki *
CVE-2024-40596

An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. The Special:Investigate feature can expose suppressed information for log events. (TimelineService does not support properly suppressing.)

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-40597

An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. It can expose suppressed information for log events. (The log_deleted attribute is not respected.)

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-40598

An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. The API can expose suppressed information for log events. (The log_deleted attribute is not applied to entries.)

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-40599

An issue was discovered in the GuMaxDD skin for MediaWiki through 1.42.1. There is stored XSS via MediaWiki:Sidebar top-level menu entries.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-40600

An issue was discovered in the Metrolook skin for MediaWiki through 1.42.1. There is stored XSS via MediaWiki:Sidebar top-level menu entries.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-40601

An issue was discovered in the MediaWikiChat extension for MediaWiki through 1.42.1. CSRF can occur in API modules.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-40602

An issue was discovered in the Tempo skin for MediaWiki through 1.42.1. There is stored XSS via MediaWiki:Sidebar top-level menu entries.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-40603

An issue was discovered in the ArticleRatings extension for MediaWiki through 1.42.1. Special:ChangeRating allows CSRF to alter data via a GET request.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-40604

An issue was discovered in the Nimbus skin for MediaWiki through 1.42.1. There is Stored XSS via MediaWiki:Nimbus-sidebar menu and submenu entries.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-40605

An issue was discovered in the Foreground skin for MediaWiki through 1.42.1. There is stored XSS via MediaWiki:Sidebar top-level menu entries.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2024-47913

An issue was discovered in the AbuseFilter extension for MediaWiki before 1.39.9, 1.40.x and 1.41.x before 1.41.3, and 1.42.x before 1.42.2. An API caller can match a filter condition against AbuseFilter logs even if the caller is not authorized to view the log details for the filter.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2025-61636

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/htmlform/fields/HTMLButtonField.Php. This issue affects MediaWiki: from * before 1.39.14, 1.43.4, 1.44.1.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2025-61637

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Action/mediawiki.Action.Edit.Preview.Js, resources/src/mediawiki.Page.Preview.Js. This issue affects MediaWiki: from * before 1.39.14, 1.43.4, 1.44.1.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2025-61638

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki, Wikimedia Foundation Parsoid. This vulnerability is associated with program files includes/parser/Sanitizer.Php, src/Core/Sanitizer.Php. This issue affects MediaWiki: from * before 1.39.14, 1.43.4, 1.44.1; Parsoid: from * before 0.16.6, 0.20.4, 0.21.1.

Products Affected

Vendor Product Version
mediawiki mediawiki *
wikimedia parsoid *
CVE-2025-61639

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/logging/ManualLogEntry.Php, includes/recentchanges/RecentChangeFactory.Php, includes/recentchanges/RecentChangeStore.Php. This issue affects MediaWiki: from * before 1.39.14, 1.43.4, 1.44.1.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2025-61640

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Rcfilters/ui/RclToOrFromWidget.Js. This issue affects MediaWiki: from * before 1.39.14, 1.43.4, 1.44.1.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2025-61645

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/pager/CodexTablePager.Php. This issue affects MediaWiki: from * before 1.44.1.

Products Affected

Vendor Product Version
mediawiki mediawiki *
CVE-2025-61648

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files modules/ext.CheckUser.TempAccounts/components/ShowIPButton.Vue, modules/ext.CheckUser.TempAccounts/SpecialBlock.Js. This issue affects CheckUser: from * before 1.44.1.

Products Affected

Vendor Product Version
mediawiki checkuser *
CVE-2025-61651

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files modules/ext.CheckUser/checkuser/checkUserHelper/buildUserElement.Js. This issue affects CheckUser: from * before 1.44.1.

Products Affected

Vendor Product Version
mediawiki checkuser *
CVE-2025-61655

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation VisualEditor. This vulnerability is associated with program files includes/ApiVisualEditorEdit.Php, modules/ve-mw/init/targets/ve.Init.Mw.DesktopArticleTarget.Js, modules/ve-mw/ui/dialogs/ve.Ui.MWSaveDialog.Js. This issue affects VisualEditor: from * before 1.39.14, 1.43.4, 1.44.1.

Products Affected

Vendor Product Version
mediawiki visual_editor *
mediawiki visual_editor 1.44.0
CVE-2025-61656

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation VisualEditor. This vulnerability is associated with program files src/ce/ve.Ce.ClipboardHandler.Js. This issue affects VisualEditor: from * before 1.39.14, 1.43.4, 1.44.1.

Products Affected

Vendor Product Version
mediawiki visual_editor *
mediawiki visual_editor 1.44.0
CVE-2025-67475

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/CommentFormatter/CommentParser.Php. This issue affects MediaWiki: from * before 1.39.16, 1.43.6, 1.44.3, 1.45.1.

Products Affected

Vendor Product Version
mediawiki mediawiki *
mediawiki mediawiki 1.45.0
CVE-2025-67477

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Special.Apisandbox/ApiSandboxLayout.Js. This issue affects MediaWiki: from * before 1.44.3, 1.45.1.

Products Affected

Vendor Product Version
mediawiki mediawiki *
mediawiki mediawiki 1.45.0
CVE-2025-67481

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.JqueryMsg/mediawiki.JqueryMsg.Js. This issue affects MediaWiki: from * before 1.39.16, 1.43.6, 1.44.3, 1.45.1.

Products Affected

Vendor Product Version
mediawiki mediawiki *
mediawiki mediawiki 1.45.0
CVE-2025-67483

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Page.Preview.Js. This issue affects MediaWiki: from * before 1.43.6, 1.44.3, 1.45.1.

Products Affected

Vendor Product Version
mediawiki mediawiki *
mediawiki mediawiki 1.45.0