CVE-2014-9475
CVSS v2.0
3.5 (Low)
EPSS
0.13 % (49th)
Affected Products
1
Advisories
2
Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki before 1.19.23, 1.2x before 1.22.15, 1.23.x before 1.23.8, and 1.24.x before 1.24.1 allows remote authenticated users to inject arbitrary web script or HTML via a wikitext message.
Weaknesses
- CWE-79
- Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
- CVE Status
- PUBLISHED
- CNA
- Debian GNU/Linux
- Published Date
-
2015-01-16 16:59:09
(9 years ago) - Updated Date
-
2015-09-17 18:14:14
(9 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...