Описание
Cross-site request forgery (CSRF) vulnerability in the Special:Import feature in MediaWiki 1.3.0 through 1.6.10, 1.12.x before 1.12.2, and 1.13.x before 1.13.3 allows remote attackers to perform unspecified actions as authenticated users via unknown vectors.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 1:1.13.3-1 |
| gutsy | ignored | end of life, was needed |
| hardy | released | 1:1.11.2-2ubuntu0.2 |
| intrepid | released | 1:1.12.0-2ubuntu0.2 |
| jaunty | not-affected | 1:1.13.3-1 |
| karmic | not-affected | 1:1.13.3-1 |
| upstream | released | 1:1.13.3-1 |
Показывать по
EPSS
5.8 Medium
CVSS2
Связанные уязвимости
Cross-site request forgery (CSRF) vulnerability in the Special:Import feature in MediaWiki 1.3.0 through 1.6.10, 1.12.x before 1.12.2, and 1.13.x before 1.13.3 allows remote attackers to perform unspecified actions as authenticated users via unknown vectors.
Cross-site request forgery (CSRF) vulnerability in the Special:Import ...
Cross-site request forgery (CSRF) vulnerability in the Special:Import feature in MediaWiki 1.3.0 through 1.6.10, 1.12.x before 1.12.2, and 1.13.x before 1.13.3 allows remote attackers to perform unspecified actions as authenticated users via unknown vectors.
EPSS
5.8 Medium
CVSS2