Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mediawiki mediawiki 1.13.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4408
Cross-site scripting (XSS) vulnerability in MediaWiki 1.13.1, 1.12.0, and possibly other versions prior to 1.13.2 allows remote malicious users to inject arbitrary web script or HTML via the useskin parameter to an unspecified component.
Mediawiki Mediawiki 1.12.0
Mediawiki Mediawiki 1.13.1
NA
CVE-2008-5249
Cross-site scripting (XSS) vulnerability in MediaWiki 1.13.0 up to and including 1.13.2 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Mediawiki Mediawiki 1.13.2
Mediawiki Mediawiki 1.13.1
Mediawiki Mediawiki 1.13.0
1 Github repository
NA
CVE-2008-5250
Cross-site scripting (XSS) vulnerability in MediaWiki prior to 1.6.11, 1.12.x prior to 1.12.2, and 1.13.x prior to 1.13.3, when Internet Explorer is used and uploads are enabled, or an SVG scripting browser is used and SVG uploads are enabled, allows remote authenticated users to...
Mediawiki Mediawiki 1.13.0
Mediawiki Mediawiki 1.13.1
Mediawiki Mediawiki 1.12.1
Mediawiki Mediawiki 1.13.2
Mediawiki Mediawiki 1.6.11
Mediawiki Mediawiki 1.12.0
NA
CVE-2008-5687
MediaWiki 1.11, and other versions prior to 1.13.3, does not properly protect against the download of backups of deleted images, which might allow remote malicious users to obtain sensitive information via requests for files in images/deleted/.
Mediawiki Mediawiki 1.11
Mediawiki Mediawiki 1.11.2
Mediawiki Mediawiki 1.12.0
Mediawiki Mediawiki 1.13.0
Mediawiki Mediawiki 1.12.3
Mediawiki Mediawiki 1.11.1
Mediawiki Mediawiki 1.12.1
Mediawiki Mediawiki 1.12.2
Mediawiki Mediawiki 1.13.1
Mediawiki Mediawiki 1.13.2
NA
CVE-2009-0737
Multiple cross-site scripting (XSS) vulnerabilities in the web-based installer (config/index.php) in MediaWiki 1.6 prior to 1.6.12, 1.12 prior to 1.12.4, and 1.13 prior to 1.13.4, when the installer is in active use, allow remote malicious users to inject arbitrary web script or ...
Mediawiki Mediawiki 1.12.0
Mediawiki Mediawiki 1.13.0
Mediawiki Mediawiki 1.13.1
Mediawiki Mediawiki 1.6.5
Mediawiki Mediawiki 1.6.6
Mediawiki Mediawiki 1.12.1
Mediawiki Mediawiki 1.6.3
Mediawiki Mediawiki 1.6.4
Mediawiki Mediawiki 1.6.11
Mediawiki Mediawiki 1.13.2
Mediawiki Mediawiki 1.13.3
Mediawiki Mediawiki 1.6.7
Mediawiki Mediawiki 1.6.8
Mediawiki Mediawiki 1.12.2
Mediawiki Mediawiki 1.12.3
Mediawiki Mediawiki 1.6.0
Mediawiki Mediawiki 1.6.1
Mediawiki Mediawiki 1.6.2
Mediawiki Mediawiki 1.6.9
Mediawiki Mediawiki 1.6.10
NA
CVE-2008-5688
MediaWiki 1.8.1, and other versions prior to 1.13.3, when the wgShowExceptionDetails variable is enabled, sometimes provides the full installation path in a debugging message, which might allow remote malicious users to obtain sensitive information via unspecified requests that t...
Mediawiki Mediawiki 1.8.2
Mediawiki Mediawiki 1.12.1
Mediawiki Mediawiki 1.13.0
Mediawiki Mediawiki 1.9.3
Mediawiki Mediawiki 1.12.3
Mediawiki Mediawiki 1.9.2
Mediawiki Mediawiki 1.12.0
Mediawiki Mediawiki 1.10.0
Mediawiki Mediawiki 1.11.2
Mediawiki Mediawiki 1.9.4
Mediawiki Mediawiki 1.8.5
Mediawiki Mediawiki 1.11
Mediawiki Mediawiki 1.9.1
Mediawiki Mediawiki 1.10.4
Mediawiki Mediawiki 1.10.1
Mediawiki Mediawiki 1.8.3
Mediawiki Mediawiki 1.13.1
Mediawiki Mediawiki 1.10.3
Mediawiki Mediawiki 1.10.2
Mediawiki Mediawiki 1.8.4
Mediawiki Mediawiki 1.8.1
Mediawiki Mediawiki 1.9.0
NA
CVE-2011-0537
Multiple directory traversal vulnerabilities in (1) languages/Language.php and (2) includes/StubObject.php in MediaWiki 1.8.0 and other versions prior to 1.16.2, when running on Windows and possibly Novell Netware, allow remote malicious users to include and execute arbitrary loc...
Mediawiki Mediawiki 1.8.3
Mediawiki Mediawiki 1.9.3
Mediawiki Mediawiki 1.9.6
Mediawiki Mediawiki 1.10.2
Mediawiki Mediawiki 1.10.0
Mediawiki Mediawiki 1.11.2
Mediawiki Mediawiki 1.11
Mediawiki Mediawiki 1.12.0
Mediawiki Mediawiki 1.12.4
Mediawiki Mediawiki 1.13.4
Mediawiki Mediawiki 1.13.1
Mediawiki Mediawiki 1.15.0
Mediawiki Mediawiki 1.16.1
Mediawiki Mediawiki 1.8.4
Mediawiki Mediawiki 1.8.5
Mediawiki Mediawiki 1.9.2
Mediawiki Mediawiki 1.9.5
Mediawiki Mediawiki 1.10.1
Mediawiki Mediawiki 1.11.0
Mediawiki Mediawiki 1.11.1
Mediawiki Mediawiki 1.13.0
Mediawiki Mediawiki 1.14.0
NA
CVE-2008-5252
Cross-site request forgery (CSRF) vulnerability in the Special:Import feature in MediaWiki 1.3.0 up to and including 1.6.10, 1.12.x prior to 1.12.2, and 1.13.x prior to 1.13.3 allows remote malicious users to perform unspecified actions as authenticated users via unknown vectors.
Mediawiki Mediawiki 1.6.11
Mediawiki Mediawiki 1.3.3
Mediawiki Mediawiki 1.3.4
Mediawiki Mediawiki 1.3.13
Mediawiki Mediawiki 1.3.14
Mediawiki Mediawiki 1.5
Mediawiki Mediawiki 1.5.0
Mediawiki Mediawiki 1.5.1
Mediawiki Mediawiki 1.6.0
Mediawiki Mediawiki 1.6.1
Mediawiki Mediawiki 1.6.8
Mediawiki Mediawiki 1.6.9
Mediawiki Mediawiki 1.12.0
Mediawiki Mediawiki 1.13.0
Mediawiki Mediawiki 1.3.5
Mediawiki Mediawiki 1.3.6
Mediawiki Mediawiki 1.3.15
Mediawiki Mediawiki 1.4.1
Mediawiki Mediawiki 1.5.2
Mediawiki Mediawiki 1.5.3
Mediawiki Mediawiki 1.5.4
Mediawiki Mediawiki 1.6.2
NA
CVE-2010-1150
MediaWiki prior to 1.15.3, and 1.6.x prior to 1.16.0beta2, does not properly handle a correctly authenticated but unintended login attempt, which makes it easier for remote authenticated users to conduct phishing attacks by arranging for a victim to login to the attacker's a...
Mediawiki Mediawiki 1.7.3
Mediawiki Mediawiki 1.6.3
Mediawiki Mediawiki 1.8.2
Mediawiki Mediawiki 1.12.1
Mediawiki Mediawiki 1.13.0
Mediawiki Mediawiki 1.14.0
Mediawiki Mediawiki 1.9.3
Mediawiki Mediawiki 1.11.0
Mediawiki Mediawiki 1.6.12
Mediawiki Mediawiki 1.15.1
Mediawiki Mediawiki 1.15.0
Mediawiki Mediawiki 1.8.0
Mediawiki Mediawiki 1.12.3
Mediawiki Mediawiki 1.6.2
Mediawiki Mediawiki 1.9.2
Mediawiki Mediawiki 1.12.0
Mediawiki Mediawiki 1.6.10
Mediawiki Mediawiki 1.13.4
Mediawiki Mediawiki 1.6.7
Mediawiki Mediawiki 1.6.5
Mediawiki Mediawiki 1.6.9
Mediawiki Mediawiki 1.6.6
NA
CVE-2013-2031
MediaWiki prior to 1.19.6 and 1.20.x prior to 1.20.5 allows remote malicious users to conduct cross-site scripting (XSS) attacks, as demonstrated by a CDATA section containing valid UTF-7 encoded sequences in a SVG file, which is then incorrectly interpreted as UTF-8 by Chrome an...
Gentoo Linux
Mediawiki Mediawiki
Mediawiki Mediawiki 1.19.4
Mediawiki Mediawiki 1.19
Mediawiki Mediawiki 1.18.3
Mediawiki Mediawiki 1.17.3
Mediawiki Mediawiki 1.17.2
Mediawiki Mediawiki 1.16.1
Mediawiki Mediawiki 1.16.0
Mediawiki Mediawiki 1.15.2
Mediawiki Mediawiki 1.15.1
Mediawiki Mediawiki 1.15.0
Mediawiki Mediawiki 1.13.2
Mediawiki Mediawiki 1.13.1
Mediawiki Mediawiki 1.12.1
Mediawiki Mediawiki 1.12.0
Mediawiki Mediawiki 1.20.4
Mediawiki Mediawiki 1.20.3
Mediawiki Mediawiki 1.19.1
Mediawiki Mediawiki 1.19.0
Mediawiki Mediawiki 1.18.0
Mediawiki Mediawiki 1.18
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »