CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mediawiki: >> Mediawiki >> 1.3 Security Vulnerabilities

CVE-2005-0535

Cross-site request forgery (CSRF) vulnerability in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allows remote attackers to perform unauthorized actions as authenticated MediaWiki users.

CVSS Score

7.5

EPSS Score

0.009

Published

2005-02-22

CVE-2004-1405

MediaWiki 1.3.8 and earlier, when used with Apache mod_mime, does not properly handle files with two file extensions, such as .php.rar, which allows remote attackers to upload and execute arbitrary code.

CVSS Score

7.5

EPSS Score

0.089

Published

2004-12-31

Page 29

Vulnerabilities

Vulnerable Software

Mediawiki: >> Mediawiki >> 1.3 Security Vulnerabilities

Products

Pricing

Contact Us