CVE-2017-8808

Опубликовано: 15 нояб. 2017

Источник: ubuntu

Приоритет: low

CVSS2: 4.3

CVSS3: 6.1

Описание

MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has XSS when the $wgShowExceptionDetails setting is false and the browser sends non-standard URL escaping.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	1.27.4-1
cosmic	not-affected	1.27.4-1
devel	not-affected	1.27.4-1
disco	not-affected	1.27.4-1
esm-apps/bionic	not-affected	1.27.4-1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was needed]
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was needed

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

6.1 Medium

CVSS3

Связанные уязвимости

CVE-2017-8808

CVSS3: 6.1

nvd

около 8 лет назад

MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has XSS when the $wgShowExceptionDetails setting is false and the browser sends non-standard URL escaping.

CVE-2017-8808

CVSS3: 6.1

debian

около 8 лет назад

MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29. ...

GHSA-82j7-474r-g29g

CVSS3: 6.1

github

больше 3 лет назад

MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has XSS when the $wgShowExceptionDetails setting is false and the browser sends non-standard URL escaping.

4.3 Medium

CVSS2

6.1 Medium

CVSS3

CVE-2017-8808

Описание

Пакет mediawiki

Ссылки на источники

Связанные уязвимости