CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mediawiki: >> Mediawiki >> 1.5.0 Security Vulnerabilities

CVE-2005-4031

Eval injection vulnerability in MediaWiki 1.5.x before 1.5.3 allows remote attackers to execute arbitrary PHP code via the "user language option," which is used as part of a dynamic class name that is processed using the eval function.

CVSS Score

7.5

EPSS Score

0.017

Published

2005-12-06

Page 29

Vulnerabilities

Vulnerable Software

Mediawiki: >> Mediawiki >> 1.5.0 Security Vulnerabilities

Products

Pricing

Contact Us