| Max CVSS | 5.8 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2009-0737 | 2.6 |
Multiple cross-site scripting (XSS) vulnerabilities in the web-based installer (config/index.php) in MediaWiki 1.6 before 1.6.12, 1.12 before 1.12.4, and 1.13 before 1.13.4, when the installer is in active use, allow remote attackers to inject arbitr
|
14-10-2009 - 05:22 | 25-02-2009 - 20:30 | |
| CVE-2008-5250 | 3.5 |
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.6.11, 1.12.x before 1.12.2, and 1.13.x before 1.13.3, when Internet Explorer is used and uploads are enabled, or an SVG scripting browser is used and SVG uploads are enabled, allows remot
|
14-10-2009 - 05:17 | 19-12-2008 - 17:30 | |
| CVE-2008-5252 | 5.8 |
Cross-site request forgery (CSRF) vulnerability in the Special:Import feature in MediaWiki 1.3.0 through 1.6.10, 1.12.x before 1.12.2, and 1.13.x before 1.13.3 allows remote attackers to perform unspecified actions as authenticated users via unknown
|
14-10-2009 - 05:17 | 19-12-2008 - 17:30 | |
| CVE-2008-5249 | 4.3 |
Cross-site scripting (XSS) vulnerability in MediaWiki 1.13.0 through 1.13.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
14-10-2009 - 05:17 | 19-12-2008 - 17:30 |