Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2012-6453

Published: 31/12/2012 Updated: 31/12/2012
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Rssreader

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in the RSS Reader extension prior to 0.2.6 for MediaWiki allows remote malicious users to inject arbitrary web script or HTML via a crafted feed.

Vulnerable Product Search on Vulmon Subscribe to Product

mediawiki rssreader 0.2.4

mediawiki rssreader 0.2.2

mediawiki rssreader 0.2.1

mediawiki rssreader 0.2

mediawiki rssreader

mediawiki rssreader 0.2.3

Vendor Advisories

Debian CVElist Bug Report Logs: mediawiki-extensions-base: RSS_Reader Javascript injection
Debian Bug report logs - #696179 mediawiki-extensions-base: RSS_Reader Javascript injection Package: mediawiki-extensions-base; Maintainer for mediawiki-extensions-base is Debian QA Group <packages@qadebianorg>; Source for mediawiki-extensions-base is src:mediawiki-extensions (PTS, buildd, popcon) Reported by: Thorsten Gla ...

References

CWE-79http://bugs.debian.org/696179http://www.mediawiki.org/wiki/Extension:RSS_Reader#0.2.6https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696179https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXECVE-2024-34490SQL injectionCVE-2024-34488CVE-2024-4507CVE-2023-7028CVE-2024-23187TCPCVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook