Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-6730HistorySep 01, 2015 - 2:59 p.m.
CVE-2015-6730
2015-09-0114:59:08
Debian Security Bug Tracker
security-tracker.debian.org
16
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
66.3%
Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 allows remote attackers to inject arbitrary web script or HTML via the f parameter, which is not properly handled in an error page, related to “ForeignAPI images.”
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | mediawiki | < 1:1.25.5-1 | mediawiki_1:1.25.5-1_all.deb |
| Debian | 11 | all | mediawiki | < 1:1.25.5-1 | mediawiki_1:1.25.5-1_all.deb |
| Debian | 999 | all | mediawiki | < 1:1.25.5-1 | mediawiki_1:1.25.5-1_all.deb |
| Debian | 13 | all | mediawiki | < 1:1.25.5-1 | mediawiki_1:1.25.5-1_all.deb |
Related
ubuntucve
ubuntucve
CVE-2015-6730
2015-09-01 00:00:00
cve
cve
CVE-2015-6730
2015-09-01 14:59:08
nvd
nvd
CVE-2015-6730
2015-09-01 14:59:08
cvelist
cvelist
CVE-2015-6730
2015-09-01 14:00:00
prion
prion
Cross site scripting
2015-09-01 14:59:00
openvas
openvas
MediaWiki Multiple Vulnerabilities (Sep 2015) - Linux
2017-03-09 00:00:00
MediaWiki Multiple Vulnerabilities (Sep 2015) - Windows
2017-03-09 00:00:00
Gentoo Security Advisory GLSA 201510-05
2015-11-08 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: mediawiki-1.24.3-1.fc21
2015-09-03 18:52:14
[SECURITY] Fedora 23 Update: mediawiki-1.25.2-2.fc23
2015-08-28 17:38:31
[SECURITY] Fedora 22 Update: mediawiki-1.25.2-2.fc22
2015-09-03 18:53:15
freebsd
freebsd
mediawiki -- multiple vulnerabilities
2015-08-10 00:00:00
nessus
nessus
FreeBSD : mediawiki -- multiple vulnerabilities (6241b5df-42a1-11e5-93ad-002590263bf5)
2015-08-17 00:00:00
Fedora 23 : mediawiki-1.25.2-2.fc23 (2015-13920)
2015-08-31 00:00:00
GLSA-201510-05 : MediaWiki: Multiple vulnerabilities
2015-11-02 00:00:00
gentoo
gentoo
MediaWiki: Multiple vulnerabilities
2015-10-31 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
66.3%
Related for DEBIANCVE:CVE-2015-6730