CVE-2005-0535
MediaWiki 1.3.x < 1.3.11 and 1.4 beta < 1.4 rc1 - Cross-Site Request Forgery
Title source: llmDescription
Cross-site request forgery (CSRF) vulnerability in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allows remote attackers to perform unauthorized actions as authenticated MediaWiki users.
References (4)
Core 4
Core References
Patch, Vendor Advisory vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1013260
Patch, Vendor Advisory vendor-advisory
x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200502-33.xml
Vendor Advisory x_refsource_confirm
http://sourceforge.net/project/shownotes.php?release_id=307067
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/14360
Scores
EPSS
0.0087
EPSS Percentile
75.5%
Details
Status
published
Products (12)
gentoo/linux
mediawiki/mediawiki
1.3
mediawiki/mediawiki
1.3.1
mediawiki/mediawiki
1.3.2
mediawiki/mediawiki
1.3.3
mediawiki/mediawiki
1.3.4
mediawiki/mediawiki
1.3.5
mediawiki/mediawiki
1.3.6
mediawiki/mediawiki
1.3.7
mediawiki/mediawiki
1.3.8
... and 2 more
Published
Feb 22, 2005
Tracked Since
Feb 18, 2026