Vulnerabilities > CVE-2005-1245 - Unspecified vulnerability in Mediawiki

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

mediawiki

NVD

Published: 2005-05-02

Updated: 2017-07-11

Summary

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.2, when using HTML Tidy ($wgUseTidy), allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

Vulnerable Configurations

Part	Description	Count
Application	Mediawiki Mediawiki Mediawiki 1.3.5 Mediawiki Mediawiki 1.3.6 Mediawiki Mediawiki 1.4_Beta3 Mediawiki Mediawiki 1.3 Mediawiki Mediawiki 1.3.10 Mediawiki Mediawiki 1.3.4 Mediawiki Mediawiki 1.3.9 Mediawiki Mediawiki 1.4_Beta4 Mediawiki Mediawiki 1.4_Beta1 Mediawiki Mediawiki 1.3.3 Mediawiki Mediawiki 1.3.1 Mediawiki Mediawiki 1.3.7 Mediawiki Mediawiki 1.3.11 Mediawiki Mediawiki 1.3.8 Mediawiki Mediawiki 1.3.2 Mediawiki Mediawiki 1.4_Beta2 Mediawiki Mediawiki 1.4_Beta5	17

Summary

Vulnerable Configurations

References