Описание
Unrestricted file upload vulnerability in the chunk upload API in MediaWiki 1.19 through 1.19.6 and 1.20.x before 1.20.6 allows remote attackers to execute arbitrary code by uploading a file with an executable extension.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 1:1.19.7+dfsg-1 |
| bionic | not-affected | 1:1.19.7+dfsg-1 |
| cosmic | not-affected | 1:1.19.7+dfsg-1 |
| devel | not-affected | 1:1.19.7+dfsg-1 |
| disco | not-affected | 1:1.19.7+dfsg-1 |
| eoan | not-affected | 1:1.19.7+dfsg-1 |
| esm-apps/bionic | not-affected | 1:1.19.7+dfsg-1 |
| esm-apps/focal | not-affected | 1:1.19.7+dfsg-1 |
| esm-apps/jammy | not-affected | 1:1.19.7+dfsg-1 |
| esm-infra-legacy/trusty | DNE |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
Unrestricted file upload vulnerability in the chunk upload API in MediaWiki 1.19 through 1.19.6 and 1.20.x before 1.20.6 allows remote attackers to execute arbitrary code by uploading a file with an executable extension.
Unrestricted file upload vulnerability in the chunk upload API in Medi ...
Unrestricted file upload vulnerability in the chunk upload API in MediaWiki 1.19 through 1.19.6 and 1.20.x before 1.20.6 allows remote attackers to execute arbitrary code by uploading a file with an executable extension.
EPSS
6.8 Medium
CVSS2