Lucene search

Ubuntu.comUB:CVE-2011-0047

HistoryFeb 04, 2011 - 12:00 a.m.

CVE-2011-0047

2011-02-0400:00:00

ubuntu.com

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.004

Percentile

72.3%

JSON

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.2 allows
remote attackers to inject arbitrary web script or HTML via crafted
Cascading Style Sheets (CSS) comments, aka “CSS injection vulnerability.”

References

launchpad.net/bugs/cve/CVE-2011-0047

nvd.nist.gov/vuln/detail/CVE-2011-0047

security-tracker.debian.org/tracker/CVE-2011-0047

www.cve.org/CVERecord?id=CVE-2011-0047

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.004

Percentile

72.3%

JSON

Related for UB:CVE-2011-0047