Vulnerabilities > CVE-2007-0788 - Unspecified vulnerability in Mediawiki 1.9.0/1.9.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Cross-site scripting (XSS) vulnerability in MediaWiki 1.9.x before 1.9.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "sortable tables JavaScript."
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
References
- http://lists.wikimedia.org/pipermail/mediawiki-announce/2007-February/000059.html
- http://lists.wikimedia.org/pipermail/mediawiki-announce/2007-February/000059.html
- http://osvdb.org/33091
- http://osvdb.org/33091
- http://secunia.com/advisories/24039
- http://secunia.com/advisories/24039
- http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_9_2/phase3/RELEASE-NOTES
- http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_9_2/phase3/RELEASE-NOTES
- http://www.securityfocus.com/bid/22397
- http://www.securityfocus.com/bid/22397
- http://www.vupen.com/english/advisories/2007/0490
- http://www.vupen.com/english/advisories/2007/0490
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32217
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32217