Mediawiki » Mediawiki » 1.9.1 : Security Vulnerabilities, CVEs, Published In 2007

cpe:2.3:a:mediawiki:mediawiki:1.9.1:*:*:*:*:*:*:*

CVE-2007-4828

Cross-site scripting (XSS) vulnerability in the API pretty-printing mode in MediaWiki 1.8.0 through 1.8.4, 1.9.0 through 1.9.3, 1.10.0 through 1.10.1, and the 1.11 development versions before 1.11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
4.3
EPSS Score
0.29%
Published
2007-09-12
Updated
2017-07-29

CVE-2007-0894

MediaWiki before 1.9.2 allows remote attackers to obtain sensitive information via a direct request to (1) Simple.deps.php, (2) MonoBook.deps.php, (3) MySkin.deps.php, or (4) Chick.deps.php in wiki/skins, which shows the installation path in the resulting error message.
Max CVSS
5.0
EPSS Score
0.96%
Published
2007-02-12
Updated
2018-10-16

CVE-2007-0788

Cross-site scripting (XSS) vulnerability in MediaWiki 1.9.x before 1.9.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "sortable tables JavaScript."
Max CVSS
4.3
EPSS Score
0.87%
Published
2007-02-06
Updated
2017-07-29
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close