CVE-2012-4377

Опубликовано: 26 окт. 2017

Источник: ubuntu

Приоритет: medium

CVSS2: 4.3

CVSS3: 6.1

Описание

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.18.5 and 1.19.x before 1.19.2 allows remote attackers to inject arbitrary web script or HTML via a File: link to a nonexistent image.

Релиз	Статус	Примечание
artful	not-affected
bionic	not-affected
devel	not-affected
esm-apps/bionic	not-affected
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [1:1.19.14+dfsg-1]]
hardy	ignored	end of life
lucid	ignored	end of life
natty	ignored	end of life
oneiric	ignored	end of life
precise	ignored	end of life

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

6.1 Medium

CVSS3

Связанные уязвимости

CVE-2012-4377

CVSS3: 6.1

nvd

больше 8 лет назад

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.18.5 and 1.19.x before 1.19.2 allows remote attackers to inject arbitrary web script or HTML via a File: link to a nonexistent image.

CVE-2012-4377

CVSS3: 6.1

debian

больше 8 лет назад

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.18.5 an ...

GHSA-rcq7-gcq5-jx2v

CVSS3: 6.1

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.18.5 and 1.19.x before 1.19.2 allows remote attackers to inject arbitrary web script or HTML via a File: link to a nonexistent image.

4.3 Medium

CVSS2

6.1 Medium

CVSS3

CVE-2012-4377

Описание

Пакет mediawiki

Ссылки на источники

Связанные уязвимости