Vulnerabilities > Mediawiki > Mediawiki > 1.5.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-01-19 | CVE-2006-0322 | Unspecified vulnerability in Mediawiki Unspecified vulnerability the edit comment formatting functionality in MediaWiki 1.5.x before 1.5.6 and 1.4.x before 1.4.14 allows attackers to cause a denial of service (infinite loop) via "certain malformed links." | 5.0 |
2005-12-22 | CVE-2005-4501 | Unspecified vulnerability in Mediawiki MediaWiki before 1.5.4 uses a hard-coded "internal placeholder string", which allows remote attackers to bypass protection against cross-site scripting (XSS) attacks and execute Javascript using inline style attributes, which are processed by Internet Explorer. network mediawiki | 4.3 |
2005-12-06 | CVE-2005-4031 | Remote Code Execution vulnerability in MediaWiki User Language Eval injection vulnerability in MediaWiki 1.5.x before 1.5.3 allows remote attackers to execute arbitrary PHP code via the "user language option," which is used as part of a dynamic class name that is processed using the eval function. | 7.5 |