CVE-2013-4308 in Liquidthreads Project MediaWikiinformation

Résumé (Anglaise)

Cross-site scripting (XSS) vulnerability in pages/TalkpageHistoryView.php in the LiquidThreads (LQT) extension 2.x and possibly 3.x for MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 allows remote attackers to inject arbitrary web script or HTML via a thread subject.

Réserver

12/06/2013

Divulgation

12/09/2013

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
10132	Liquidthreads Project MediaWiki LiquidThreads Extension TalkpageHistoryView.php cross site scripting	79	Élevé	Correctif officiel	CVE-2013-4308

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

◂ PrécédentAperçuSuivant ▸

Want to know what is going to be exploited?

We predict KEV entries!