Vulnerabilities > Mediawiki > Cargo

DATE CVE VULNERABILITY TITLE RISK
2024-10-05 CVE-2024-47846 Cross-Site Request Forgery (CSRF) vulnerability in Mediawiki Cargo 3.6.0
Cross-Site Request Forgery (CSRF) vulnerability in The Wikimedia Foundation Mediawiki - Cargo allows Cross Site Request Forgery.This issue affects Mediawiki - Cargo: from 3.6.X before 3.6.1.
network
low complexity
mediawiki CWE-352
8.8
2024-10-05 CVE-2024-47847 Cross-site Scripting vulnerability in Mediawiki Cargo 3.6.0
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Cargo allows Cross-Site Scripting (XSS).This issue affects Mediawiki - Cargo: from 3.6.X before 3.6.1.
network
low complexity
mediawiki CWE-79
6.1
2024-10-05 CVE-2024-47849 SQL Injection vulnerability in Mediawiki Cargo 3.6.0
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in The Wikimedia Foundation Mediawiki - Cargo allows SQL Injection.This issue affects Mediawiki - Cargo: from 3.6.X before 3.6.1.
network
low complexity
mediawiki CWE-89
critical
9.8