Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mediawiki mediawiki 1.14.0 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2009-4589
Cross-site scripting (XSS) vulnerability in the Special:Block implementation in the getContribsLink function in SpecialBlockip.php in MediaWiki 1.14.0 and 1.15.0 allows remote malicious users to inject arbitrary web script or HTML via the ip parameter.
Mediawiki Mediawik I1.15.0
Mediawiki Mediawiki 1.14.0
4.3
CVSSv2
CVE-2008-5249
Cross-site scripting (XSS) vulnerability in MediaWiki 1.13.0 up to and including 1.13.2 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Mediawiki Mediawiki 1.13.1
Mediawiki Mediawiki 1.13.0
Mediawiki Mediawiki 1.13.2
1 Github repository
3.5
CVSSv2
CVE-2011-1580
The transwiki import functionality in MediaWiki prior to 1.16.3 does not properly check privileges, which allows remote authenticated users to perform imports from any wgImportSources wiki via a crafted POST request.
Mediawiki Mediawiki 1.3.13
Mediawiki Mediawiki 1.5.6
Mediawiki Mediawiki 1.4
Mediawiki Mediawiki 1.16.0
Mediawiki Mediawiki 1.7.3
Mediawiki Mediawiki 1.6.3
Mediawiki Mediawiki 1.8.2
Mediawiki Mediawiki 1.5.1
Mediawiki Mediawiki 1.5.8
Mediawiki Mediawiki 1.4.11
Mediawiki Mediawiki 1.2.4
Mediawiki Mediawiki 1.12.1
Mediawiki Mediawiki 1.3.12
Mediawiki Mediawiki 1.4.1
Mediawiki Mediawiki 1.4.8
Mediawiki Mediawiki 1.5.3
Mediawiki Mediawiki 1.13.0
Mediawiki Mediawiki 1.14.0
Mediawiki Mediawiki 1.9.3
Mediawiki Mediawiki 1.11.0
Mediawiki Mediawiki 1.6.12
Mediawiki Mediawiki 1.5
3.5
CVSSv2
CVE-2008-5250
Cross-site scripting (XSS) vulnerability in MediaWiki prior to 1.6.11, 1.12.x prior to 1.12.2, and 1.13.x prior to 1.13.3, when Internet Explorer is used and uploads are enabled, or an SVG scripting browser is used and SVG uploads are enabled, allows remote authenticated users to...
Mediawiki Mediawiki 1.12.1
Mediawiki Mediawiki 1.12.0
Mediawiki Mediawiki 1.6.11
Mediawiki Mediawiki 1.13.1
Mediawiki Mediawiki 1.13.0
Mediawiki Mediawiki 1.13.2
2.6
CVSSv2
CVE-2010-2788
Cross-site scripting (XSS) vulnerability in profileinfo.php in MediaWiki prior to 1.15.5, when wgEnableProfileInfo is enabled, allows remote malicious users to inject arbitrary web script or HTML via the filter parameter.
Mediawiki Mediawiki 1.3.13
Mediawiki Mediawiki 1.5.6
Mediawiki Mediawiki 1.4
Mediawiki Mediawiki 1.7.3
Mediawiki Mediawiki 1.6.3
Mediawiki Mediawiki 1.8.2
Mediawiki Mediawiki 1.5.1
Mediawiki Mediawiki 1.5.8
Mediawiki Mediawiki 1.4.11
Mediawiki Mediawiki 1.2.4
Mediawiki Mediawiki 1.12.1
Mediawiki Mediawiki 1.3.12
Mediawiki Mediawiki 1.4.1
Mediawiki Mediawiki 1.4.8
Mediawiki Mediawiki 1.5.3
Mediawiki Mediawiki 1.13.0
Mediawiki Mediawiki 1.9.3
Mediawiki Mediawiki 1.6.12
Mediawiki Mediawiki 1.5
Mediawiki Mediawiki 1.15.1
Mediawiki Mediawiki 1.4.9
Mediawiki Mediawiki 1.15.0
2.6
CVSSv2
CVE-2009-0737
Multiple cross-site scripting (XSS) vulnerabilities in the web-based installer (config/index.php) in MediaWiki 1.6 prior to 1.6.12, 1.12 prior to 1.12.4, and 1.13 prior to 1.13.4, when the installer is in active use, allow remote malicious users to inject arbitrary web script or ...
Mediawiki Mediawiki 1.6.3
Mediawiki Mediawiki 1.12.1
Mediawiki Mediawiki 1.13.0
Mediawiki Mediawiki 1.12.3
Mediawiki Mediawiki 1.6.2
Mediawiki Mediawiki 1.12.0
Mediawiki Mediawiki 1.6.10
Mediawiki Mediawiki 1.6.7
Mediawiki Mediawiki 1.6.5
Mediawiki Mediawiki 1.6.9
Mediawiki Mediawiki 1.6.6
Mediawiki Mediawiki 1.6.4
Mediawiki Mediawiki 1.6.11
Mediawiki Mediawiki 1.13.3
Mediawiki Mediawiki 1.13.1
Mediawiki Mediawiki 1.6.0
Mediawiki Mediawiki 1.6.1
Mediawiki Mediawiki 1.13.2
Mediawiki Mediawiki 1.6.8
Mediawiki Mediawiki 1.12.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3