On Tue, 15 Sep 2015, Salvatore Bonaccorso wrote:
> CVE-2015-6729[2]:
> | Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki
> | before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 allows
> | remote attackers to inject arbitrary web script or HTML via the rel404
> |
On Tue, 15 Sep 2015, Salvatore Bonaccorso wrote:
> CVE-2015-6730[3]:
> | Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki
> | before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 allows
> | remote attackers to inject arbitrary web script or HTML via the f
> |
Control: retitle -1 CVE-2015-6727 CVE-2015-6728 CVE-2015-6730
Hi Thorsten,
On Wed, Sep 16, 2015 at 03:31:31PM +0200, Thorsten Glaser wrote:
> On Tue, 15 Sep 2015, Salvatore Bonaccorso wrote:
>
> > CVE-2015-6729[2]:
> > | Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki
> > |
Source: mediawiki
Version: 1:1.19.5-1
Severity: important
Tags: security upstream
Hi,
the following vulnerabilities were published for mediawiki.
CVE-2015-6727[0]:
| The Special:DeletedContributions page in MediaWiki before 1.23.10,
| 1.24.x before 1.24.3, and 1.25.x before 1.25.2 allows remote
4 matches
Mail list logo