CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-4883

Cross-site scripting (XSS) vulnerability in the BotQuery extension in MediaWiki 1.7.x and earlier before SVN 20070910 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a similar issue to CVE-2007-4828.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.3%

CVSS Severity

CVSS v2 Score 4.3

References

http://lists.wikimedia.org/pipermail/mediawiki-announce/2007-September/000067.html
http://osvdb.org/37336
http://lists.wikimedia.org/pipermail/mediawiki-announce/2007-September/000067.html
http://osvdb.org/37336

Products affected by CVE-2007-4883

Mediawiki » Mediawiki » Version: 1.7.0

cpe:2.3:a:mediawiki:mediawiki:1.7.0
Mediawiki » Mediawiki » Version: 1.7.1

cpe:2.3:a:mediawiki:mediawiki:1.7.1
Mediawiki » Mediawiki » Version: 1.7.2

cpe:2.3:a:mediawiki:mediawiki:1.7.2
Mediawiki » Mediawiki » Version: 1.7.3

cpe:2.3:a:mediawiki:mediawiki:1.7.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-4883

Products

Pricing

Contact Us