Vulnerabilities > Mediawiki > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-10-05 CVE-2024-47847 Cross-site Scripting vulnerability in Mediawiki Cargo 3.6.0
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Cargo allows Cross-Site Scripting (XSS).This issue affects Mediawiki - Cargo: from 3.6.X before 3.6.1.
network
low complexity
mediawiki CWE-79
6.1
2024-07-07 CVE-2024-40596 Information Exposure Through Log Files vulnerability in Mediawiki
An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1.
network
low complexity
mediawiki CWE-532
4.3
2024-07-07 CVE-2024-40598 Information Exposure Through Log Files vulnerability in Mediawiki
An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1.
network
low complexity
mediawiki CWE-532
4.3
2024-07-07 CVE-2024-40599 Cross-site Scripting vulnerability in Mediawiki
An issue was discovered in the GuMaxDD skin for MediaWiki through 1.42.1.
network
low complexity
mediawiki CWE-79
4.8
2024-07-07 CVE-2024-40600 Cross-site Scripting vulnerability in Mediawiki
An issue was discovered in the Metrolook skin for MediaWiki through 1.42.1.
network
low complexity
mediawiki CWE-79
4.8
2024-07-07 CVE-2024-40601 Cross-Site Request Forgery (CSRF) vulnerability in Mediawiki
An issue was discovered in the MediaWikiChat extension for MediaWiki through 1.42.1.
network
low complexity
mediawiki CWE-352
6.5
2024-07-07 CVE-2024-40602 Cross-site Scripting vulnerability in Mediawiki
An issue was discovered in the Tempo skin for MediaWiki through 1.42.1.
network
low complexity
mediawiki CWE-79
4.8
2024-07-07 CVE-2024-40603 Cross-Site Request Forgery (CSRF) vulnerability in Mediawiki
An issue was discovered in the ArticleRatings extension for MediaWiki through 1.42.1.
network
low complexity
mediawiki CWE-352
4.3
2024-07-07 CVE-2024-40604 Cross-site Scripting vulnerability in Mediawiki
An issue was discovered in the Nimbus skin for MediaWiki through 1.42.1.
network
low complexity
mediawiki CWE-79
4.8
2024-07-07 CVE-2024-40605 Cross-site Scripting vulnerability in Mediawiki
An issue was discovered in the Foreground skin for MediaWiki through 1.42.1.
network
low complexity
mediawiki CWE-79
4.8