Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2014-5243

Опубликовано: 22 авг. 2014
Источник: debian
EPSS Низкий

Описание

MediaWiki before 1.19.18, 1.20.x through 1.22.x before 1.22.9, and 1.23.x before 1.23.2 does not enforce an IFRAME protection mechanism for transcluded pages, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
mediawikifixed1:1.19.18+dfsg-0.1package
mediawikiend-of-lifesqueezepackage

Примечания

  • https://bugzilla.wikimedia.org/show_bug.cgi?id=65778

EPSS

Процентиль: 58%
0.00368
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2014-5243

ubuntu
больше 11 лет назад

MediaWiki before 1.19.18, 1.20.x through 1.22.x before 1.22.9, and 1.23.x before 1.23.2 does not enforce an IFRAME protection mechanism for transcluded pages, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.

nvd логотип

CVE-2014-5243

nvd
больше 11 лет назад

MediaWiki before 1.19.18, 1.20.x through 1.22.x before 1.22.9, and 1.23.x before 1.23.2 does not enforce an IFRAME protection mechanism for transcluded pages, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.

github логотип

GHSA-p79q-phv9-m8c4

github
больше 3 лет назад

MediaWiki before 1.19.18, 1.20.x through 1.22.x before 1.22.9, and 1.23.x before 1.23.2 does not enforce an IFRAME protection mechanism for transcluded pages, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.

EPSS

Процентиль: 58%
0.00368
Низкий