Secunia Logo  
 Vulnerability InformationVulnerability ScanningCommunityBlogCorporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Information > Secunia Advisories > Advisories by Product > MediaWiki 1.x
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About


Secunia PSI WorldMap 		 
Vulnerability Report: MediaWiki 1.x
This vulnerability report for MediaWiki 1.x contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.

If you have information about a new or an existing vulnerability in MediaWiki 1.x then you are more than welcome to contact us.


Table of Contents

1. Product Summary Only

2. Secunia Advisory Statistics (All time)
2.1. Statistics for 2009
2.2. Statistics for 2008
2.3. Statistics for 2007
2.4. Statistics for 2006
2.5. Statistics for 2005
2.6. Statistics for 2004
2.7. Statistics for 2003

3. List of Secunia Advisories (All time)
3.1. List for 2009
3.2. List for 2008
3.3. List for 2007
3.4. List for 2006
3.5. List for 2005
3.6. List for 2004
3.7. List for 2003

4. Send Feedback
 
Vendor, Links, and Unpatched Vulnerabilities

Vendor N/A

Product Link View Here (Link to external site)

Affected By 28 Secunia advisories
30 Vulnerabilities

Monitor Product Receive alerts for this product

Unpatched 0% (0 of 28 Secunia advisories)

Most Critical Unpatched
There are no unpatched Secunia advisories affecting this product, when all vendor patches are applied..




28 Secunia Advisories in 2003-2009
Secunia has issued a total of 28 Secunia advisories in 2003-2009 for MediaWiki 1.x. Currently, 0% (0 out of 28) are marked as unpatched.

More information about the specific Secunia advisories affecting MediaWiki 1.x can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.



MediaWiki "Special:Blocks" Cross-Site Scripting Vulnerability
Vendor Patch. Secunia Advisory 1 of 2 in 2009. 1,003 views.
Release Date:
2009-07-14		 Secunia Advisory ID:
SA35818		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

MediaWiki Installer Cross-Site Scripting Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 2 in 2009. 2,071 views.
Release Date:
2009-02-09		 Secunia Advisory ID:
SA33881		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
Some vulnerabilities have been reported in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

MediaWiki Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 4 in 2008. 3,584 views.
Release Date:
2008-12-15		 Secunia Advisory ID:
SA33133		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
Some vulnerabilities have been reported in MediaWiki, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site scripting and request forgery attacks. [Read More]

MediaWiki "useskin" Cross-Site Scripting Vulnerability
Vendor Patch. Secunia Advisory 2 of 4 in 2008. 3,251 views.
Release Date:
2008-10-03		 Secunia Advisory ID:
SA32131		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

MediaWiki JSON Callback Information Disclosure
Vendor Patch. Secunia Advisory 3 of 4 in 2008. 5,604 views.
Release Date:
2008-03-03		 Secunia Advisory ID:
SA29216		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Exposure of sensitive information
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can potentially be exploited by malicious people to disclose sensitive information. [Read More]

MediaWiki Cross-Site Scripting Vulnerability
Vendor Patch. Secunia Advisory 4 of 4 in 2008. 5,755 views.
Release Date:
2008-01-24		 Secunia Advisory ID:
SA28629		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

MediaWiki Cross-Site Scripting Vulnerability
Vendor Patch. Secunia Advisory 1 of 4 in 2007. 9,320 views.
Release Date:
2007-09-11		 Secunia Advisory ID:
SA26772		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

MediaWiki AJAX UTF-7 Cross-Site Scripting
Vendor Patch. Secunia Advisory 2 of 4 in 2007. 9,782 views.
Release Date:
2007-02-21		 Secunia Advisory ID:
SA24211		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
Moshe BA has reported a vulnerability in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

MediaWiki Sortable Tables Script Insertion Vulnerability
Vendor Patch. Secunia Advisory 3 of 4 in 2007. 11,692 views.
Release Date:
2007-02-05		 Secunia Advisory ID:
SA24039		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
Exposure of system information
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious users to conduct script insertion attacks. [Read More]

MediaWiki AJAX "rs" Cross-Site Scripting
Vendor Patch. Secunia Advisory 4 of 4 in 2007. 10,923 views.
Release Date:
2007-01-09		 Secunia Advisory ID:
SA23647		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been discovered in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

MediaWiki Edit Form Script Insertion Vulnerability
Vendor Patch. Secunia Advisory 1 of 4 in 2006. 9,482 views.
Release Date:
2006-06-06		 Secunia Advisory ID:
SA20458		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to conduct script insertion attacks. [Read More]

MediaWiki Script Insertion Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 4 in 2006. 10,654 views.
Release Date:
2006-05-23		 Secunia Advisory ID:
SA20189		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
Nick Jenkins has reported some vulnerabilities in MediaWiki, which can be exploited by malicious people to conduct script insertion attacks. [Read More]

MediaWiki Encoded Links Script Insertion Vulnerability
Vendor Patch. Secunia Advisory 3 of 4 in 2006. 10,173 views.
Release Date:
2006-04-03		 Secunia Advisory ID:
SA19508		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to conduct script insertion attacks. [Read More]

MediaWiki Edit Comment Formatting Denial of Service
Vendor Patch. Secunia Advisory 4 of 4 in 2006. 11,006 views.
Release Date:
2006-02-03		 Secunia Advisory ID:
SA18711		 Solution Status:
Vendor Patch
Criticality:
 Impact:
DoS
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which potentially can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]

MediaWiki Hardcoded Placeholder String Security Bypass Vulnerability
Vendor Patch. Secunia Advisory 1 of 9 in 2005. 10,006 views.
Release Date:
2005-12-22		 Secunia Advisory ID:
SA18219		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Security Bypass
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious users to bypass certain security restrictions and conduct script insertion attacks. [Read More]

MediaWiki Language Option PHP Code Execution Vulnerability
Vendor Patch. Secunia Advisory 2 of 9 in 2005. 13,502 views.
Release Date:
2005-12-05		 Secunia Advisory ID:
SA17866		 Solution Status:
Vendor Patch
Criticality:
 Impact:
System access
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to compromise a vulnerable system. [Read More]

MediaWiki HTML Inline Style Attributes Cross-Site Scripting
Vendor Patch. Secunia Advisory 3 of 9 in 2005. 12,171 views.
Release Date:
2005-10-06		 Secunia Advisory ID:
SA17074		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

MediaWiki Cross-Site Scripting Vulnerabilities
Vendor Patch. Secunia Advisory 4 of 9 in 2005. 9,205 views.
Release Date:
2005-09-30		 Secunia Advisory ID:
SA16932		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
Some vulnerabilities have been reported in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

MediaWiki Move Template Cross-Site Scripting Vulnerability
Vendor Patch. Secunia Advisory 5 of 9 in 2005. 8,514 views.
Release Date:
2005-07-07		 Secunia Advisory ID:
SA15950		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

MediaWiki HTML Attributes Cross-Site Scripting Vulnerability
Vendor Patch. Secunia Advisory 6 of 9 in 2005. 8,694 views.
Release Date:
2005-06-06		 Secunia Advisory ID:
SA15590		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

MediaWiki Unspecified Cross-Site Scripting Vulnerability
Vendor Patch. Secunia Advisory 7 of 9 in 2005. 6,698 views.
Release Date:
2005-04-21		 Secunia Advisory ID:
SA14993		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

MediaWiki Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 8 of 9 in 2005. 8,942 views.
Release Date:
2005-02-22		 Secunia Advisory ID:
SA14360		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Security Bypass
Cross Site Scripting
Manipulation of data
 Where:
From remote
Short Description:
Some vulnerabilities have been reported in MediaWiki, which can be exploited by malicious users to delete arbitrary files, and by malicious people to conduct cross-site scripting attacks and bypass certain security restrictions. [Read More]

MediaWiki Unspecified Cross-Site Scripting Vulnerability
Vendor Patch. Secunia Advisory 9 of 9 in 2005. 11,521 views.
Release Date:
2005-02-04		 Secunia Advisory ID:
SA14125		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

MediaWiki "images" Arbitrary Script Upload and Execution Vulnerability
Vendor Patch. Secunia Advisory 1 of 4 in 2004. 9,930 views.
Release Date:
2004-12-13		 Secunia Advisory ID:
SA13419		 Solution Status:
Vendor Patch
Criticality:
 Impact:
System access
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to compromise a vulnerable system. [Read More]

MediaWiki Unspecified Security Issue
Vendor Patch. Secunia Advisory 2 of 4 in 2004. 7,457 views.
Release Date:
2004-10-18		 Secunia Advisory ID:
SA12854		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Unknown
 Where:
From remote
Short Description:
The vendor has reported a security issue in MediaWiki, with an unknown impact. [Read More]

MediaWiki Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 3 of 4 in 2004. 7,963 views.
Release Date:
2004-10-14		 Secunia Advisory ID:
SA12825		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
Manipulation of data
 Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in MediaWiki, which can be exploited by malicious people to conduct script insertion, cross-site scripting, and SQL injection attacks. [Read More]

MediaWiki "raw" Page Output Mode Cross-Site Scripting Vulnerability
Vendor Patch. Secunia Advisory 4 of 4 in 2004. 8,204 views.
Release Date:
2004-10-01		 Secunia Advisory ID:
SA12692		 Solution Status:
Vendor Patch
Criticality:
 Impact:
Cross Site Scripting
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

MediaWiki Arbitrary File Inclusion Vulnerability
Vendor Patch. Secunia Advisory 1 of 1 in 2003. 8,474 views.
Release Date:
2003-11-17		 Secunia Advisory ID:
SA10231		 Solution Status:
Vendor Patch
Criticality:
 Impact:
System access
 Where:
From remote
Short Description:
A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to compromise a vulnerable system. [Read More]






Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs (open positions) | About Secunia
Copyright Secunia 2002-2009