Show filters
23 Total Results
Displaying 21-23 of 23
Sort by:
Attacker Value
Unknown

CVE-2005-4501

Disclosure Date: December 22, 2005 (last updated February 22, 2025)
MediaWiki before 1.5.4 uses a hard-coded "internal placeholder string", which allows remote attackers to bypass protection against cross-site scripting (XSS) attacks and execute Javascript using inline style attributes, which are processed by Internet Explorer.
0
0
Attacker Value
Unknown

CVE-2005-2396

Disclosure Date: July 27, 2005 (last updated February 22, 2025)
Cross-site scripting (XSS) vulnerability in MediaWiki 1.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the page move template.
0
0
Attacker Value
Unknown

CVE-2004-2152

Disclosure Date: December 31, 2004 (last updated February 22, 2025)
Cross-site scripting (XSS) vulnerability in 'raw' page output mode for MediaWiki 1.3.4 and earlier allows remote attackers to inject arbitrary web script or HTML.
0
0
View More Topics  < Previous