CVE-2013-6453

Опубликовано: 12 мая 2014

Источник: ubuntu

Приоритет: medium

CVSS2: 7.5

Описание

MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 does not properly sanitize SVG files, which allows remote attackers to have unspecified impact via invalid XML.

Релиз	Статус	Примечание
devel	not-affected
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [1:1.19.11+dfsg-1]]
lucid	ignored	end of life
precise	ignored	end of life
precise/esm	DNE	precise was needed
quantal	ignored	end of life
saucy	ignored	end of life
trusty	not-affected	1:1.19.11+dfsg-1
trusty/esm	DNE	trusty was not-affected [1:1.19.11+dfsg-1]
upstream	released	1:1.19.10+dfsg-1

Показывать по

Ссылки на источники

7.5 High

CVSS2

Связанные уязвимости

CVE-2013-6453

nvd

больше 11 лет назад

MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 does not properly sanitize SVG files, which allows remote attackers to have unspecified impact via invalid XML.

CVE-2013-6453

debian

больше 11 лет назад

MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 ...

GHSA-g3qp-m89q-7v8m

github

больше 3 лет назад

MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 does not properly sanitize SVG files, which allows remote attackers to have unspecified impact via invalid XML.

7.5 High

CVSS2

CVE-2013-6453

Описание

Пакет mediawiki

Ссылки на источники

Связанные уязвимости