CVE-2004-2186

MediaWiki 1.3.5 - SQL Injection via SpecialMaintenance

Title source: llm
STIX 2.1

Description

SQL injection vulnerability in MediaWiki 1.3.5 allows remote attackers to execute arbitrary SQL commands via SpecialMaintenance.

References (2)

Core 2
Core References
Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/11416

Scores

EPSS 0.0043
EPSS Percentile 62.8%

Details

Status published
Products (1)
mediawiki/mediawiki 1.3.5
Published Dec 31, 2004
Tracked Since Feb 18, 2026