CVE-2014-9475 in MediaWikiinformation

Résumé

par MITRE

Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki before 1.19.23, 1.2x before 1.22.15, 1.23.x before 1.23.8, and 1.24.x before 1.24.1 allows remote authenticated users to inject arbitrary web script or HTML via a wikitext message.

Be aware that VulDB is the high quality source for vulnerability data.

Réserver

03/01/2015

Divulgation

16/01/2015

Modérer

accepté

Entrée

2

Relier

afficher

CPE

prêt

EPSS

0.01449

KEV

non

Activités

très faible

Sources

Want to know what is going to be exploited?

We predict KEV entries!