mediawiki
431 tracked vulnerabilities.
CVE-2008-4408
MediaWiki < 1.13.2 - Cross-Site Scripting via useskin Parameter
Oct 03, 2008
EPSS 0.01
CVE-2008-1318
MediaWiki <1.11.2 - Info Disclosure
Mar 13, 2008
EPSS 0.01
CVE-2008-0460
MediaWiki 1.8-1.11.0rc1 and BotQuery Extension - Cross-Site Scripting via api.php
Jan 25, 2008
EPSS 0.16
CVE-2007-4883
MediaWiki 1.7.x and earlier - Cross-Site Scripting via BotQuery Extension
Sep 14, 2007
EPSS 0.00
CVE-2007-4828
MediaWiki 1.8.0-1.8.4, 1.9.0-1.9.3, 1.10.0-1.10.1, < 1.11.0 - Cross-Site Scripting in API Pretty-Printing Mode
Sep 12, 2007
EPSS 0.01
CVE-2007-1054
MediaWiki 1.6.x-1.9.2 - Cross-Site Scripting via UTF-7 Encoded rs Parameter
Feb 21, 2007
EPSS 0.05
CVE-2007-1055
MediaWiki < 1.8.2 - Cross-Site Scripting via AJAX rs Parameter
Feb 21, 2007
EPSS 0.02
CVE-2007-0894
MediaWiki < 1.9.2 - Information Disclosure via Direct Skin Dependency File Request
Feb 12, 2007
EPSS 0.01
CVE-2007-0788
MediaWiki 1.9.x < 1.9.2 - Cross-Site Scripting via Sortable Tables JavaScript
Feb 06, 2007
EPSS 0.01
CVE-2007-0177
MediaWiki < 1.6.9, 1.7 < 1.7.2, 1.8 < 1.8.3, 1.9 < 1.9.0rc2 - Cross-Site Scripting via AJAX Module
Jan 11, 2007
EPSS 0.22
CVE-2006-2895
MediaWiki 1.6.0-1.6.6 - Cross-Site Scripting via Edit Form
Jun 07, 2006
EPSS 0.01
CVE-2006-2611
MediaWiki < 1.6.5_r14348 - Cross-Site Scripting via Variable Handler
May 26, 2006
EPSS 0.01
CVE-2006-1498
MediaWiki - Cross-Site Scripting via Crafted Encoded Links
Mar 30, 2006
EPSS 0.01
CVE-2006-0322
MediaWiki 1.5.x < 1.5.6 and 1.4.x < 1.4.14 - Denial of Service via Malformed Links
Jan 19, 2006
EPSS 0.01
CVE-2005-4501
MediaWiki < 1.5.4 - Cross-Site Scripting via Inline Style Attributes
Dec 22, 2005
EPSS 0.01
CVE-2005-4031
MediaWiki 1.5.x - Remote Code Execution via User Language Option Eval Injection
Dec 06, 2005
EPSS 0.02
CVE-2005-3165
MediaWiki < 1.4.9 - Cross-Site Scripting via Math Tags or Extension Sections
Oct 06, 2005
EPSS 0.00
CVE-2005-3166
MediaWiki 1.4.x < 1.4.10 and 1.3.x < 1.3.16 - Denial of Service via Edit Submission Handling
Oct 06, 2005
EPSS 0.01
CVE-2005-3167
MediaWiki - Cross-Site Scripting via HTML Inline Style Attributes
Oct 06, 2005
EPSS 0.00
CVE-2005-2396
MediaWiki <= 1.4.6 - Cross-Site Scripting via Page Move Template Parameter
Jul 27, 2005
EPSS 0.01
CVE-2005-2215
MediaWiki < 1.4.6 and 1.5 < beta3 - Cross-Site Scripting via Page Move Template Parameter
Jul 12, 2005
EPSS 0.00
CVE-2005-1888
MediaWiki < 1.4.5 - Cross-Site Scripting via HTML Attributes in Page Templates
Jun 06, 2005
EPSS 0.00
CVE-2005-0534
MediaWiki 1.3.x < 1.3.11 and 1.4 beta < 1.4 rc1 - Cross-Site Scripting
May 02, 2005
EPSS 0.00
CVE-2005-0536
MediaWiki 1.3.x < 1.3.11 and 1.4 beta < 1.4 rc1 - Directory Traversal via Image Deletion Parameter
May 02, 2005
EPSS 0.01
CVE-2005-1245
MediaWiki < 1.4.2 - Cross-Site Scripting via HTML Tidy
May 02, 2005
EPSS 0.00
Products
mediawiki 395
core 29
cargo 9
checkuser 8
abusefilter 3
visual_editor 3
mobilefrontend 2
abuse-filter 1
createredirect 1
data-transfer 1
matomo 1
mediawik 1
mediawiki_botquery_ext 1
rss_for_mediawiki 1
rssreader 1
score 1
scribunto 1
semantic-media-wiki 1
semantic_drilldown 1
shortdescription 1
skin\ 1
wikisource_category_browser 1
Quick Filters