Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki 1.3.5 allow remote attackers to execute arbitrary scripts and/or SQL queries via (1) the UnicodeConverter extension, (2) raw page views, (3) SpecialIpblocklist, (4) SpecialEmailuser, (5) SpecialMaintenance, and (6) ImagePage.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2005-07-10T04:00:00Z
Updated: 2024-09-16T17:09:05.713Z
Reserved: 2005-07-10T04:00:00Z
Link: CVE-2004-2185
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2004-12-31T05:00:00.000
Modified: 2008-09-05T20:43:26.097
Link: CVE-2004-2185
Redhat
No data.