This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Mediawiki First view 2008-12-19
Product Mediawiki Last view 2020-09-27
Version 1.10.4 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:mediawiki:mediawiki

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
7.5 2020-09-27 CVE-2020-26121

An issue was discovered in the FileImporter extension for MediaWiki before 1.34.4. An attacker can import a file even when the target page is protected against "page creation" and the attacker should not be able to create it. This occurs because of a mishandled distinction between an upload restriction and a create restriction. An attacker cannot leverage this to overwrite anything, but can leverage this to force a wiki to have a page with a disallowed title.

6.1 2020-09-27 CVE-2020-26120

XSS exists in the MobileFrontend extension for MediaWiki before 1.34.4 because section.line is mishandled during regex section line replacement from PageGateway. Using crafted HTML, an attacker can elicit an XSS attack via jQuery's parseHTML method, which can cause image callbacks to fire even without the element being appended to the DOM.

7.5 2020-09-27 CVE-2020-25869

An information leak was discovered in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4. Handling of actor ID does not necessarily use the correct database or correct wiki.

6.1 2020-09-27 CVE-2020-25828

An issue was discovered in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4. The non-jqueryMsg version of mw.message().parse() doesn't escape HTML. This affects both message contents (which are generally safe) and the parameters (which can be based on user input). (When jqueryMsg is loaded, it correctly accepts only whitelisted tags in message contents, and escapes all parameters. Situations with an unloaded jqueryMsg are rare in practice, but can for example occur for Special:SpecialPages on a wiki with no extensions installed.)

7.5 2020-09-27 CVE-2020-25827

An issue was discovered in the OATHAuth extension in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4. For Wikis using OATHAuth on a farm/cluster (such as via CentralAuth), rate limiting of OATH tokens is only done on a single site level. Thus, multiple requests can be made across many wikis/sites concurrently.

6.1 2020-09-27 CVE-2020-25815

An issue was discovered in MediaWiki 1.32.x through 1.34.x before 1.34.4. LogEventList::getFiltersDesc is insecurely using message text to build options names for an HTML multi-select field. The relevant code should use escaped() instead of text().

6.1 2020-09-27 CVE-2020-25814

In MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4, XSS related to jQuery can occur. The attacker creates a message with [javascript:payload xss] and turns it into a jQuery object with mw.message().parse(). The expected result is that the jQuery object does not contain an tag (or it does not have a href attribute, or it's empty, etc.). The actual result is that the object contains an 5.3

2020-09-27 CVE-2020-25813

In MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4, Special:UserRights exposes the existence of hidden users.

6.1 2020-09-27 CVE-2020-25812

An issue was discovered in MediaWiki 1.34.x before 1.34.4. On Special:Contributions, the NS filter uses unescaped messages as keys in the option key for an HTMLForm specifier. This is vulnerable to a mild XSS if one of those messages is changed to include raw HTML.

3.1 2020-06-24 CVE-2020-15005

In MediaWiki before 1.31.8, 1.32.x and 1.33.x before 1.33.4, and 1.34.x before 1.34.2, private wikis behind a caching server using the img_auth.php image authorization security feature may have had their files cached publicly, so any unauthorized user could view them. This occurs because Cache-Control and Vary headers were mishandled.

6.1 2020-06-02 CVE-2020-10959

resources/src/mediawiki.page.ready/ready.js in MediaWiki before 1.35 allows remote attackers to force a logout and external redirection via HTML content in a MediaWiki page.

5.3 2020-04-03 CVE-2020-10960

In MediaWiki before 1.34.1, users can add various Cascading Style Sheets (CSS) classes (which can affect what content is shown or hidden in the user interface) to arbitrary DOM nodes via HTML content within a MediaWiki page. This occurs because jquery.makeCollapsible allows applying an event handler to any Cascading Style Sheets (CSS) selector. There is no known way to exploit this for cross-site scripting (XSS).

9.8 2020-03-12 CVE-2020-10534

In the GlobalBlocking extension before 2020-03-10 for MediaWiki through 1.34.0, an issue related to IP range evaluation resulted in blocked users re-gaining escalated privileges. This is related to the case in which an IP address is contained in two ranges, one of which is locally disabled.

8.1 2020-02-08 CVE-2012-4381

MediaWiki before 1.18.5, and 1.19.x before 1.19.2 saves passwords in the local database, (1) which could make it easier for context-dependent attackers to obtain cleartext passwords via a brute-force attack or, (2) when an authentication plugin returns a false in the strict function, could allow remote attackers to use old passwords for non-existing accounts in an external authentication system via unspecified vectors.

7.5 2020-02-06 CVE-2013-4572

The CentralNotice extension for MediaWiki before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3 sets the Cache-Control header to cache session cookies when a user is autocreated, which allows remote attackers to authenticate as the created user.

5.3 2020-01-28 CVE-2013-6455

The CentralAuth extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to obtain usernames via vectors related to writing the names to the DOM of a page.

6.1 2020-01-28 CVE-2013-6451

Cross-site scripting (XSS) vulnerability in MediaWiki 1.19.9 before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to inject arbitrary web script or HTML via unspecified CSS values.

5.9 2020-01-27 CVE-2014-9481

The Scribunto extension for MediaWiki allows remote attackers to obtain the rollback token and possibly other sensitive information via a crafted module, related to unstripping special page HTML.

6.1 2019-12-11 CVE-2019-19709

MediaWiki through 1.33.1 allows attackers to bypass the Title_blacklist protection mechanism by starting with an arbitrary title, establishing a non-resolvable redirect for the associated page, and using redirect=1 in the action API when editing that page.

6.1 2019-12-11 CVE-2013-4303

includes/libs/IEUrlExtension.php in the MediaWiki API in MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 does not properly detect extensions when there are an even number of "." (period) characters in a string, which allows remote attackers to conduct cross-site scripting (XSS) attacks via the siprop parameter in a query action to wiki/api.php.

7.5 2019-11-20 CVE-2013-1817

MediaWiki before 1.19.4 and 1.20.x before 1.20.3 contains an error in the api.php script which allows remote attackers to obtain sensitive information.

7.5 2019-11-20 CVE-2013-1816

MediaWiki before 1.19.4 and 1.20.x before 1.20.3 allows remote attackers to cause a denial of service (application crash) by sending a specially crafted request.

6.1 2019-10-31 CVE-2013-1951

A cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.5 and 1.20.x before 1.20.4 and allows remote attackers to inject arbitrary web script or HTML via Lua function names.

7.5 2019-10-29 CVE-2012-0046

mediawiki allows deleted text to be exposed

5.3 2019-09-25 CVE-2019-16738

In MediaWiki through 1.33.0, Special:Redirect allows information disclosure of suppressed usernames via a User ID Lookup.

CWE : Common Weakness Enumeration

%idName
33% (46) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')
16% (23) CWE-200 Information Exposure
9% (13) CWE-20 Improper Input Validation
8% (12) CWE-352 Cross-Site Request Forgery (CSRF)
5% (7) CWE-284 Access Control (Authorization) Issues
4% (6) CWE-264 Permissions, Privileges, and Access Controls
3% (5) CWE-399 Resource Management Errors
2% (4) CWE-601 URL Redirection to Untrusted Site ('Open Redirect')
2% (3) CWE-287 Improper Authentication
1% (2) CWE-269 Improper Privilege Management
1% (2) CWE-255 Credentials Management
1% (2) CWE-74 Failure to Sanitize Data into a Different Plane ('Injection')
0% (1) CWE-798 Use of Hard-coded Credentials
0% (1) CWE-755 Improper Handling of Exceptional Conditions
0% (1) CWE-668 Exposure of Resource to Wrong Sphere
0% (1) CWE-532 Information Leak Through Log Files
0% (1) CWE-384 Session Fixation
0% (1) CWE-362 Race Condition
0% (1) CWE-307 Improper Restriction of Excessive Authentication Attempts
0% (1) CWE-306 Missing Authentication for Critical Function
0% (1) CWE-276 Incorrect Default Permissions
0% (1) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
0% (1) CWE-116 Improper Encoding or Escaping of Output
0% (1) CWE-77 Improper Sanitization of Special Elements used in a Command ('Comma...
0% (1) CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path ...

Open Source Vulnerability Database (OSVDB)

id Description
78260 MediaWiki includes/api/ApiQueryRevisions.php execute() Function Deleted Cache...
77365 MediaWiki Ajax Request Parsing File Existance Disclosure
77364 MediaWiki preliminaryChecks() Function curid Parameter Request Parsing Remote...
74621 MediaWiki Transwiki Import wgImportSources Crafted POST Request Remote Import...
74620 MediaWiki Wikitext Parser includes/Sanitizer.php checkCss Function Hex String...
74619 MediaWiki URI Query String %2E Sequence XSS
74613 MediaWiki wgBlockDisablesLogin includes/User.php Auth Token Cached Data Multi...
70799 MediaWiki includes/StubObject.php Language::factory Function Traversal Local ...
70798 MediaWiki languages/Language.php Language::factory Function Traversal Local F...
70770 MediaWiki CSS Comments XSS
70272 MediaWiki Multiple Unspecified Function Clickjacking
66652 MediaWiki profileinfo.php filter Parameter XSS
66651 MediaWiki api.php Cache-Control HTTP Header Information Disclosure
63570 MediaWiki Unspecified CSRF
62799 MediaWiki thumb.php Permission Check Weakness Restricted Image Disclosure
62798 MediaWiki CSS Validation Function External Image Information Disclosure
51480 MediaWiki wgShowExceptionDetails Function Debug Message Path Disclosure

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2012-09-07 Name : FreeBSD Ports: mediawiki
File : nvt/freebsd_mediawiki8.nasl
2012-08-10 Name : Gentoo Security Advisory GLSA 201206-09 (MediaWiki)
File : nvt/glsa_201206_09.nasl
2012-07-09 Name : MediaWiki 'uselang' Parameter Cross Site Scripting Vulnerability
File : nvt/gb_mediawiki_uselang_param_xss_vuln.nasl
2012-02-11 Name : Debian Security Advisory DSA 2366-1 (mediawiki)
File : nvt/deb_2366_1.nasl
2011-06-02 Name : MediaWiki Cross-Site Scripting Vulnerability
File : nvt/secpod_mediawiki_xss_vuln.nasl
2011-05-23 Name : Fedora Update for mediawiki FEDORA-2011-6775
File : nvt/gb_fedora_2011_6775_mediawiki_fc13.nasl
2011-05-23 Name : Fedora Update for mediawiki FEDORA-2011-6774
File : nvt/gb_fedora_2011_6774_mediawiki_fc14.nasl
2011-05-11 Name : MediaWiki 'profileinfo.php' Cross Site Scripting Vulnerability
File : nvt/gb_mediawiki_profileinfo_xss_vuln.nasl
2011-05-05 Name : Fedora Update for mediawiki FEDORA-2011-5812
File : nvt/gb_fedora_2011_5812_mediawiki_fc14.nasl
2011-05-05 Name : Fedora Update for mediawiki FEDORA-2011-5807
File : nvt/gb_fedora_2011_5807_mediawiki_fc13.nasl
2011-03-05 Name : FreeBSD Ports: mediawiki
File : nvt/freebsd_mediawiki6.nasl
2011-03-04 Name : MediaWiki Frames Processing Clickjacking Information Disclosure Vulnerability
File : nvt/gb_mediawiki_clickjacking_vuln.nasl
2011-02-03 Name : MediaWiki CSS Comments Cross Site Scripting Vulnerability
File : nvt/gb_mediawiki_46108.nasl
2010-08-02 Name : MediaWiki 'profileinfo.php' Cross Site Scripting Vulnerability
File : nvt/gb_MediaWiki_42024.nasl
2010-08-02 Name : MediaWiki 'api.php' Information Disclosure Vulnerability
File : nvt/gb_MediaWiki_42019.nasl
2010-07-12 Name : Fedora Update for mediawiki FEDORA-2010-6335
File : nvt/gb_fedora_2010_6335_mediawiki_fc12.nasl
2010-05-14 Name : FreeBSD Ports: mediawiki
File : nvt/freebsd_mediawiki3.nasl
2010-04-29 Name : MediaWiki Login CSRF Vulnerability
File : nvt/secpod_mediawiki_login_csrf_vuln.nasl
2010-03-30 Name : Debian Security Advisory DSA 2022-1 (mediawiki)
File : nvt/deb_2022_1.nasl
2010-03-15 Name : MediaWiki 'CSS validation' Information Disclosure Vulnerability
File : nvt/gb_mediawiki_38621.nasl
2009-07-29 Name : Fedora Core 10 FEDORA-2009-7750 (mediawiki)
File : nvt/fcore_2009_7750.nasl
2009-03-07 Name : Fedora Core 9 FEDORA-2009-2237 (mediawiki)
File : nvt/fcore_2009_2237.nasl
2009-03-07 Name : Fedora Core 10 FEDORA-2009-2231 (mediawiki)
File : nvt/fcore_2009_2231.nasl
2009-02-13 Name : Fedora Update for mediawiki FEDORA-2008-11743
File : nvt/gb_fedora_2008_11743_mediawiki_fc10.nasl
2009-02-13 Name : Fedora Update for mediawiki FEDORA-2008-11802
File : nvt/gb_fedora_2008_11802_mediawiki_fc9.nasl

Snort® IPS/IDS

Date Description
2018-01-04 MediaWiki arbitrary file write attempt
RuleID : 45094 - Type : SERVER-WEBAPP - Revision : 2

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-e022ecbc52.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-f4b65fc7cd.nasl - Type: ACT_GATHER_INFO
2018-10-09 Name: The remote Fedora host is missing a security update.
File: fedora_2018-edf90410ea.nasl - Type: ACT_GATHER_INFO
2018-09-24 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-4301.nasl - Type: ACT_GATHER_INFO
2018-09-24 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_be1aada2be6c11e88fc6000c29434208.nasl - Type: ACT_GATHER_INFO
2017-11-20 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_298829e2ccce11e792e4000c29649f92.nasl - Type: ACT_GATHER_INFO
2017-11-16 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-4036.nasl - Type: ACT_GATHER_INFO
2017-05-16 Name: The remote Fedora host is missing a security update.
File: fedora_2017-2643ef1cad.nasl - Type: ACT_GATHER_INFO
2017-04-17 Name: The remote Fedora host is missing a security update.
File: fedora_2017-3fb95ed01f.nasl - Type: ACT_GATHER_INFO
2016-11-15 Name: The remote Fedora host is missing a security update.
File: fedora_2016-9299ce1c7d.nasl - Type: ACT_GATHER_INFO
2016-09-08 Name: The remote Fedora host is missing a security update.
File: fedora_2016-af3b0af887.nasl - Type: ACT_GATHER_INFO
2016-09-08 Name: The remote Fedora host is missing a security update.
File: fedora_2016-ce1678471e.nasl - Type: ACT_GATHER_INFO
2016-08-29 Name: An application running on the remote web server is affected by multiple vulne...
File: mediawiki_1_27_1.nasl - Type: ACT_GATHER_INFO
2016-07-14 Name: The remote Fedora host is missing a security update.
File: fedora_2015-122a831a05.nasl - Type: ACT_GATHER_INFO
2016-03-04 Name: The remote Fedora host is missing a security update.
File: fedora_2015-24fe8b66c9.nasl - Type: ACT_GATHER_INFO
2016-03-04 Name: The remote Fedora host is missing a security update.
File: fedora_2015-97fe05f788.nasl - Type: ACT_GATHER_INFO
2016-03-04 Name: The remote Fedora host is missing a security update.
File: fedora_2015-ec6d598d3d.nasl - Type: ACT_GATHER_INFO
2015-12-29 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_f36bbd66aa4411e58f5c002590263bf5.nasl - Type: ACT_GATHER_INFO
2015-11-02 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201510-05.nasl - Type: ACT_GATHER_INFO
2015-10-23 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_b973a763793611e5a2a1002590263bf5.nasl - Type: ACT_GATHER_INFO
2015-08-31 Name: The remote Fedora host is missing a security update.
File: fedora_2015-13920.nasl - Type: ACT_GATHER_INFO
2015-08-17 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_6241b5df42a111e593ad002590263bf5.nasl - Type: ACT_GATHER_INFO
2015-06-12 Name: The remote web server contains an application that is affected by multiple vu...
File: mediawiki_1_24_2.nasl - Type: ACT_GATHER_INFO
2015-04-10 Name: The remote Mandriva Linux host is missing one or more security updates.
File: mandriva_MDVSA-2015-200.nasl - Type: ACT_GATHER_INFO
2015-02-09 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201502-04.nasl - Type: ACT_GATHER_INFO