Bug | Description |
---|
TEMP-0000000-8B87A6 | mediawiki issues from 1.26.3, 1.25.6 and 1.23.14 |
CVE-2022-41767 | An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x ... |
CVE-2022-41766 | An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x ... |
CVE-2022-41765 | An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x ... |
CVE-2022-34912 | An issue was discovered in MediaWiki before 1.37.3 and 1.38.x before 1 ... |
CVE-2022-34911 | An issue was discovered in MediaWiki before 1.35.7, 1.36.x and 1.37.x ... |
CVE-2022-31091 | Guzzle, an extensible PHP HTTP client. `Authorization` and `Cookie` he ... |
CVE-2022-31090 | Guzzle, an extensible PHP HTTP client. `Authorization` headers on requ ... |
CVE-2022-31043 | Guzzle is an open source PHP HTTP client. In affected versions `Author ... |
CVE-2022-31042 | Guzzle is an open source PHP HTTP client. In affected versions the `Co ... |
CVE-2022-29248 | Guzzle is a PHP HTTP client. Guzzle prior to versions 6.5.6 and 7.4.3 ... |
CVE-2022-28204 | A denial-of-service issue was discovered in MediaWiki 1.37.x before 1. ... |
CVE-2022-28203 | A denial-of-service issue was discovered in MediaWiki before 1.35.6, 1 ... |
CVE-2022-28202 | An XSS issue was discovered in MediaWiki before 1.35.6, 1.36.x before ... |
CVE-2022-28201 | An issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36 ... |
CVE-2021-45038 | An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36 ... |
CVE-2021-44858 | An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36 ... |
CVE-2021-44857 | An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36 ... |
CVE-2021-44856 | An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36 ... |
CVE-2021-44855 | An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36 ... |
CVE-2021-44854 | An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36 ... |
CVE-2021-41801 | The ReplaceText extension through 1.41 for MediaWiki has Incorrect Acc ... |
CVE-2021-41800 | MediaWiki before 1.36.2 allows a denial of service (resource consumpti ... |
CVE-2021-41799 | MediaWiki before 1.36.2 allows a denial of service (resource consumpti ... |
CVE-2021-41798 | MediaWiki before 1.36.2 allows XSS. Month related MediaWiki messages a ... |
CVE-2021-35197 | In MediaWiki before 1.31.15, 1.32.x through 1.35.x before 1.35.3, and ... |
CVE-2021-30458 | An issue was discovered in Wikimedia Parsoid before 0.11.1 and 0.12.x ... |
CVE-2021-30159 | An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through ... |
CVE-2021-30158 | An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through ... |
CVE-2021-30157 | An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through ... |
CVE-2021-30156 | An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through ... |
CVE-2021-30155 | An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through ... |
CVE-2021-30154 | An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through ... |
CVE-2021-30153 | An issue was discovered in the VisualEditor extension in MediaWiki bef ... |
CVE-2021-30152 | An issue was discovered in MediaWiki before 1.31.13 and 1.32.x through ... |
CVE-2021-27291 | In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming ... |
CVE-2021-20270 | An infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 may lea ... |
CVE-2020-35480 | An issue was discovered in MediaWiki before 1.35.1. Missing users (acc ... |
CVE-2020-35479 | MediaWiki before 1.35.1 allows XSS via BlockLogFormatter.php. Language ... |
CVE-2020-35478 | MediaWiki before 1.35.1 allows XSS via BlockLogFormatter.php. MediaWik ... |
CVE-2020-35477 | MediaWiki before 1.35.1 blocks legitimate attempts to hide log entries ... |
CVE-2020-35475 | In MediaWiki before 1.35.1, the messages userrights-expiry-current and ... |
CVE-2020-35474 | In MediaWiki before 1.35.1, the combination of Html::rawElement and Me ... |
CVE-2020-25828 | An issue was discovered in MediaWiki before 1.31.10 and 1.32.x through ... |
CVE-2020-25827 | An issue was discovered in the OATHAuth extension in MediaWiki before ... |
CVE-2020-25815 | An issue was discovered in MediaWiki 1.32.x through 1.34.x before 1.34 ... |
CVE-2020-25814 | In MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4, X ... |
CVE-2020-25813 | In MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4, S ... |
CVE-2020-25812 | An issue was discovered in MediaWiki 1.34.x before 1.34.4. On Special: ... |
CVE-2020-17368 | Firejail through 0.9.62 mishandles shell metacharacters during use of ... |
CVE-2020-17367 | Firejail through 0.9.62 does not honor the -- end-of-options indicator ... |
CVE-2020-15005 | In MediaWiki before 1.31.8, 1.32.x and 1.33.x before 1.33.4, and 1.34. ... |
CVE-2020-10960 | In MediaWiki before 1.34.1, users can add various Cascading Style Shee ... |
CVE-2020-10959 | resources/src/mediawiki.page.ready/ready.js in MediaWiki before 1.35 a ... |
CVE-2019-19709 | MediaWiki through 1.33.1 allows attackers to bypass the Title_blacklis ... |
CVE-2019-16738 | In MediaWiki through 1.33.0, Special:Redirect allows information discl ... |
CVE-2019-12474 | Wikimedia MediaWiki 1.23.0 through 1.32.1 has an information leak. Pri ... |
CVE-2019-12473 | Wikimedia MediaWiki 1.27.0 through 1.32.1 might allow DoS. Passing inv ... |
CVE-2019-12472 | An Incorrect Access Control vulnerability was found in Wikimedia Media ... |
CVE-2019-12471 | Wikimedia MediaWiki 1.30.0 through 1.32.1 has XSS. Loading user JavaSc ... |
CVE-2019-12470 | Wikimedia MediaWiki through 1.32.1 has Incorrect Access Control. Suppr ... |
CVE-2019-12469 | MediaWiki through 1.32.1 has Incorrect Access Control. Suppressed user ... |
CVE-2019-12468 | An Incorrect Access Control vulnerability was found in Wikimedia Media ... |
CVE-2019-12467 | MediaWiki through 1.32.1 has Incorrect Access Control (issue 1 of 3). ... |
CVE-2019-12466 | Wikimedia MediaWiki through 1.32.1 allows CSRF. |
CVE-2019-11358 | jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other produc ... |
CVE-2018-13258 | Mediawiki 1.31 before 1.31.1 misses .htaccess files in the provided ta ... |
CVE-2018-0505 | Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a fla ... |
CVE-2018-0504 | Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains an in ... |
CVE-2018-0503 | Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a fla ... |
CVE-2017-8815 | The language converter in MediaWiki before 1.27.4, 1.28.x before 1.28. ... |
CVE-2017-8814 | The language converter in MediaWiki before 1.27.4, 1.28.x before 1.28. ... |
CVE-2017-8812 | MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29. ... |
CVE-2017-8811 | The implementation of raw message parameter expansion in MediaWiki bef ... |
CVE-2017-8810 | MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29. ... |
CVE-2017-8809 | api.php in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x b ... |
CVE-2017-8808 | MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29. ... |
CVE-2017-0372 | Parameters injection in the SyntaxHighlight extension of Mediawiki bef ... |
CVE-2017-0371 | MediaWiki before 1.23.16, 1.24.x through 1.27.x before 1.27.2, and 1.2 ... |
CVE-2017-0370 | Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw were Spam b ... |
CVE-2017-0369 | Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw, allowing a ... |
CVE-2017-0368 | Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw making rawH ... |
CVE-2017-0367 | Mediawiki before 1.28.1 / 1.27.2 contains an unsafe use of temporary d ... |
CVE-2017-0366 | Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw allowing to ... |
CVE-2017-0365 | Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a XSS vulnerabilit ... |
CVE-2017-0364 | Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where Speci ... |
CVE-2017-0363 | Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 has a flaw where Special:Us ... |
CVE-2017-0362 | Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where the " ... |
CVE-2017-0361 | Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains an information dis ... |
CVE-2016-6337 | MediaWiki 1.27.x before 1.27.1 might allow remote attackers to bypass ... |
CVE-2016-6336 | MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27 ... |
CVE-2016-6335 | MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27 ... |
CVE-2016-6334 | Cross-site scripting (XSS) vulnerability in the Parser::replaceInterna ... |
CVE-2016-6333 | Cross-site scripting (XSS) vulnerability in the CSS user subpage previ ... |
CVE-2016-6332 | MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27 ... |
CVE-2016-6331 | ApiParse in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x ... |
CVE-2015-8628 | The (1) Special:MyPage, (2) Special:MyTalk, (3) Special:MyContribution ... |
CVE-2015-8627 | MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, ... |
CVE-2015-8626 | The User::randomPassword function in MediaWiki before 1.23.12, 1.24.x ... |
CVE-2015-8625 | MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, ... |
CVE-2015-8624 | The User::matchEditToken function in includes/User.php in MediaWiki be ... |
CVE-2015-8623 | The User::matchEditToken function in includes/User.php in MediaWiki be ... |
CVE-2015-8622 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.23.12, ... |
CVE-2015-8005 | MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25 ... |
CVE-2015-8004 | MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25 ... |
CVE-2015-8003 | MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25 ... |
CVE-2015-8002 | The chunked upload API (ApiUpload) in MediaWiki before 1.23.11, 1.24.x ... |
CVE-2015-8001 | The chunked upload API (ApiUpload) in MediaWiki before 1.23.11, 1.24.x ... |
CVE-2015-6730 | Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki bef ... |
CVE-2015-6729 | Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki bef ... |
CVE-2015-6728 | The ApiBase::getWatchlistUser function in MediaWiki before 1.23.10, 1. ... |
CVE-2015-6727 | The Special:DeletedContributions page in MediaWiki before 1.23.10, 1.2 ... |
CVE-2015-2942 | MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 ... |
CVE-2015-2941 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.24, ... |
CVE-2015-2940 | Cross-site request forgery (CSRF) vulnerability in the CheckUser exten ... |
CVE-2015-2939 | Cross-site scripting (XSS) vulnerability in the Scribunto extension fo ... |
CVE-2015-2938 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.24, ... |
CVE-2015-2937 | MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 ... |
CVE-2015-2936 | MediaWiki 1.24.x before 1.24.2, when using PBKDF2 for password hashing ... |
CVE-2015-2935 | MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 ... |
CVE-2015-2934 | MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 ... |
CVE-2015-2933 | Cross-site scripting (XSS) vulnerability in the Html class in MediaWik ... |
CVE-2015-2932 | Incomplete blacklist vulnerability in MediaWiki before 1.19.24, 1.2x b ... |
CVE-2015-2931 | Incomplete blacklist vulnerability in includes/upload/UploadBase.php i ... |
CVE-2014-9507 | MediaWiki 1.21.x, 1.22.x before 1.22.14, and 1.23.x before 1.23.7, whe ... |
CVE-2014-9476 | MediaWiki 1.2x before 1.22.15, 1.23.x before 1.23.8, and 1.24.x before ... |
CVE-2014-9475 | Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki bef ... |
CVE-2014-9277 | The wfMangleFlashPolicy function in OutputHandler.php in MediaWiki bef ... |
CVE-2014-9276 | Cross-site request forgery (CSRF) vulnerability in the Special:Expande ... |
CVE-2014-7295 | The (1) Special:Preferences and (2) Special:UserLogin pages in MediaWi ... |
CVE-2014-7199 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.19, ... |
CVE-2014-5243 | MediaWiki before 1.19.18, 1.20.x through 1.22.x before 1.22.9, and 1.2 ... |
CVE-2014-5242 | Cross-site scripting (XSS) vulnerability in mediawiki.page.image.pagin ... |
CVE-2014-5241 | The JSONP endpoint in includes/api/ApiFormatJson.php in MediaWiki befo ... |
CVE-2014-3966 | Cross-site scripting (XSS) vulnerability in Special:PasswordReset in M ... |
CVE-2014-2853 | Cross-site scripting (XSS) vulnerability in includes/actions/InfoActio ... |
CVE-2014-2665 | includes/specials/SpecialChangePassword.php in MediaWiki before 1.19.1 ... |
CVE-2014-2244 | Cross-site scripting (XSS) vulnerability in the formatHTML function in ... |
CVE-2014-2243 | includes/User.php in MediaWiki before 1.19.12, 1.20.x and 1.21.x befor ... |
CVE-2014-2242 | includes/upload/UploadBase.php in MediaWiki before 1.19.12, 1.20.x and ... |
CVE-2014-1610 | MediaWiki 1.22.x before 1.22.2, 1.21.x before 1.21.5, and 1.19.x befor ... |
CVE-2013-7444 | The Special:Contributions page in MediaWiki before 1.22.0 allows remot ... |
CVE-2013-6472 | MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 ... |
CVE-2013-6454 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.10, ... |
CVE-2013-6453 | MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 ... |
CVE-2013-6452 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.10, ... |
CVE-2013-6451 | Cross-site scripting (XSS) vulnerability in MediaWiki 1.19.9 before 1. ... |
CVE-2013-4572 | The CentralNotice extension for MediaWiki before 1.19.9, 1.20.x before ... |
CVE-2013-4568 | Incomplete blacklist vulnerability in Sanitizer::checkCss in MediaWiki ... |
CVE-2013-4567 | Incomplete blacklist vulnerability in Sanitizer::checkCss in MediaWiki ... |
CVE-2013-4303 | includes/libs/IEUrlExtension.php in the MediaWiki API in MediaWiki 1.1 ... |
CVE-2013-4302 | (1) ApiBlock.php, (2) ApiCreateAccount.php, (3) ApiLogin.php, (4) ApiM ... |
CVE-2013-4301 | includes/resourceloader/ResourceLoaderContext.php in MediaWiki 1.19.x ... |
CVE-2013-2114 | Unrestricted file upload vulnerability in the chunk upload API in Medi ... |
CVE-2013-2032 | MediaWiki before 1.19.6 and 1.20.x before 1.20.5 does not allow extens ... |
CVE-2013-2031 | MediaWiki before 1.19.6 and 1.20.x before 1.20.5 allows remote attacke ... |
CVE-2013-1951 | A cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.5 ... |
CVE-2013-1818 | maintenance/mwdoc-filter.php in MediaWiki before 1.20.3 allows remote ... |
CVE-2013-1817 | MediaWiki before 1.19.4 and 1.20.x before 1.20.3 contains an error in ... |
CVE-2013-1816 | MediaWiki before 1.19.4 and 1.20.x before 1.20.3 allows remote attacke ... |
CVE-2012-5391 | Session fixation vulnerability in Special:UserLogin in MediaWiki befor ... |
CVE-2012-4885 | The wikitext parser in MediaWiki 1.17.x before 1.17.3 and 1.18.x befor ... |
CVE-2012-4382 | MediaWiki before 1.18.5, and 1.19.x before 1.19.2 does not properly pr ... |
CVE-2012-4381 | MediaWiki before 1.18.5, and 1.19.x before 1.19.2 saves passwords in t ... |
CVE-2012-4380 | MediaWiki before 1.18.5, and 1.19.x before 1.19.2 allows remote attack ... |
CVE-2012-4379 | MediaWiki before 1.18.5, and 1.19.x before 1.19.2 does not send a rest ... |
CVE-2012-4378 | Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki befor ... |
CVE-2012-4377 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.18.5 an ... |
CVE-2012-2698 | Cross-site scripting (XSS) vulnerability in the outputPage function in ... |
CVE-2012-1582 | Cross-site scripting (XSS) vulnerability in the wikitext parser in Med ... |
CVE-2012-1581 | MediaWiki 1.17.x before 1.17.3 and 1.18.x before 1.18.2 uses weak rand ... |
CVE-2012-1580 | Cross-site request forgery (CSRF) vulnerability in Special:Upload in M ... |
CVE-2012-1579 | The resource loader in MediaWiki 1.17.x before 1.17.3 and 1.18.x befor ... |
CVE-2012-1578 | Multiple cross-site request forgery (CSRF) vulnerabilities in MediaWik ... |
CVE-2012-0046 | mediawiki allows deleted text to be exposed |
CVE-2011-4361 | MediaWiki before 1.17.1 does not check for read permission before hand ... |
CVE-2011-4360 | MediaWiki before 1.17.1 allows remote attackers to obtain the page tit ... |
CVE-2011-1766 | includes/User.php in MediaWiki before 1.16.5, when wgBlockDisablesLogi ... |
CVE-2011-1765 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.5, w ... |
CVE-2011-1587 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.4, w ... |
CVE-2011-1580 | The transwiki import functionality in MediaWiki before 1.16.3 does not ... |
CVE-2011-1579 | The checkCss function in includes/Sanitizer.php in the wikitext parser ... |
CVE-2011-1578 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.3, w ... |
CVE-2011-0537 | Multiple directory traversal vulnerabilities in (1) languages/Language ... |
CVE-2011-0047 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.2 al ... |
CVE-2011-0003 | MediaWiki before 1.16.1, when user or site JavaScript or CSS is enable ... |
CVE-2010-2789 | PHP remote file inclusion vulnerability in MediaWikiParserTest.php in ... |
CVE-2010-2788 | Cross-site scripting (XSS) vulnerability in profileinfo.php in MediaWi ... |
CVE-2010-2787 | api.php in MediaWiki before 1.15.5 does not prevent use of public cach ... |
CVE-2010-1648 | Cross-site request forgery (CSRF) vulnerability in the login interface ... |
CVE-2010-1647 | Cross-site scripting (XSS) vulnerability in MediaWiki 1.15 before 1.15 ... |
CVE-2010-1190 | thumb.php in MediaWiki before 1.15.2, when used with access-restrictio ... |
CVE-2010-1189 | MediaWiki before 1.15.2 does not prevent wiki editors from linking to ... |
CVE-2010-1150 | MediaWiki before 1.15.3, and 1.6.x before 1.16.0beta2, does not proper ... |
CVE-2009-4589 | Cross-site scripting (XSS) vulnerability in the Special:Block implemen ... |
CVE-2009-0737 | Multiple cross-site scripting (XSS) vulnerabilities in the web-based i ... |
CVE-2008-5688 | MediaWiki 1.8.1, and other versions before 1.13.3, when the wgShowExce ... |
CVE-2008-5687 | MediaWiki 1.11, and other versions before 1.13.3, does not properly pr ... |
CVE-2008-5252 | Cross-site request forgery (CSRF) vulnerability in the Special:Import ... |
CVE-2008-5250 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.6.11, 1 ... |
CVE-2008-5249 | Cross-site scripting (XSS) vulnerability in MediaWiki 1.13.0 through 1 ... |
CVE-2008-4408 | Cross-site scripting (XSS) vulnerability in MediaWiki 1.13.1, 1.12.0, ... |
CVE-2008-1318 | Unspecified vulnerability in MediaWiki 1.11 before 1.11.2 allows remot ... |
CVE-2008-0460 | Cross-site scripting (XSS) vulnerability in api.php in (1) MediaWiki 1 ... |
CVE-2007-4828 | Cross-site scripting (XSS) vulnerability in the API pretty-printing mo ... |
CVE-2007-1055 | Cross-site scripting (XSS) vulnerability in the AJAX features in index ... |
CVE-2007-1054 | Cross-site scripting (XSS) vulnerability in the AJAX features in index ... |
CVE-2007-0894 | MediaWiki before 1.9.2 allows remote attackers to obtain sensitive inf ... |
CVE-2007-0788 | Cross-site scripting (XSS) vulnerability in MediaWiki 1.9.x before 1.9 ... |
CVE-2007-0177 | Cross-site scripting (XSS) vulnerability in the AJAX module in MediaWi ... |
CVE-2006-2895 | Cross-site scripting (XSS) vulnerability in MediaWiki 1.6.0 up to vers ... |
CVE-2006-1498 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.5.8 and ... |
CVE-2006-0322 | Unspecified vulnerability the edit comment formatting functionality in ... |
CVE-2005-4501 | MediaWiki before 1.5.4 uses a hard-coded "internal placeholder string" ... |
CVE-2005-4031 | Eval injection vulnerability in MediaWiki 1.5.x before 1.5.3 allows re ... |
CVE-2005-3167 | Incomplete blacklist vulnerability in MediaWiki before 1.4.11 does not ... |
CVE-2005-3166 | Unspecified vulnerability in "edit submission handling" for MediaWiki ... |
CVE-2005-3165 | Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki befor ... |
CVE-2005-2396 | Cross-site scripting (XSS) vulnerability in MediaWiki 1.4.6 and earlie ... |
CVE-2005-2215 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.x bef ... |
CVE-2005-1888 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.5 all ... |
CVE-2005-1245 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.2, wh ... |
CVE-2005-0536 | Directory traversal vulnerability in MediaWiki 1.3.x before 1.3.11 and ... |
CVE-2005-0535 | Cross-site request forgery (CSRF) vulnerability in MediaWiki 1.3.x bef ... |
CVE-2005-0534 | Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki 1.3.x ... |
CVE-2004-2187 | Unknown vulnerability in ImagePage for MediaWiki 1.3.5, related to "fi ... |
CVE-2004-2186 | SQL injection vulnerability in MediaWiki 1.3.5 allows remote attackers ... |
CVE-2004-2185 | Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki 1.3.5 ... |
CVE-2004-2152 | Cross-site scripting (XSS) vulnerability in 'raw' page output mode for ... |
CVE-2004-1405 | MediaWiki 1.3.8 and earlier, when used with Apache mod_mime, does not ... |