CVE-2008-0460
25.01.2008, 16:00
Cross-site scripting (XSS) vulnerability in api.php in (1) MediaWiki 1.11 through 1.11.0rc1, 1.10 through 1.10.2, 1.9 through 1.9.4, and 1.8; and (2) the BotQuery extension for MediaWiki 1.7 and earlier; when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Cross-site Scripting
Vendor | Product | Version |
---|---|---|
mediawiki | mediawiki | 1.7.0 |
mediawiki | mediawiki | 1.8.0 |
mediawiki | mediawiki | 1.8.1 |
mediawiki | mediawiki | 1.8.2 |
mediawiki | mediawiki | 1.8.3 |
mediawiki | mediawiki | 1.8.4 |
mediawiki | mediawiki | 1.9.0 |
mediawiki | mediawiki | 1.9.1 |
mediawiki | mediawiki | 1.9.2 |
mediawiki | mediawiki | 1.9.3 |
mediawiki | mediawiki | 1.9.4 |
mediawiki | mediawiki | 1.10.0 |
mediawiki | mediawiki | 1.10.1 |
mediawiki | mediawiki | 1.10.2 |
mediawiki | mediawiki | 1.11 |
mediawiki | mediawiki | 1.11.0rc1 |
mediawiki | mediawiki_botquery_ext | * |
microsoft | internet_explorer | * |
mediawiki | mediawiki | 1.7.0 |
mediawiki | mediawiki_botquery_ext | * |
microsoft | internet_explorer | * |
𝑥
= Vulnerable software versions

Debian Releases

Ubuntu Releases
References