CVE Vulnerability

CVE-2007-0788

Cross-site scripting (XSS) vulnerability in MediaWiki 1.9.x before 1.9.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "sortable tables JavaScript."

4.3 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 8.6 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

Scope

References
Link Resource
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_9_2/phase3/RELEASE-NOTES Vendor Advisory
http://secunia.com/advisories/24039
http://lists.wikimedia.org/pipermail/mediawiki-announce/2007-February/000059.html
http://www.securityfocus.com/bid/22397
http://osvdb.org/33091
http://www.vupen.com/english/advisories/2007/0490
https://exchange.xforce.ibmcloud.com/vulnerabilities/32217
Configurations

Configuration 1

cpe:2.3:a:mediawiki:mediawiki:1.9.1:*:*:*:*:*:*:*
cpe:2.3:a:mediawiki:mediawiki:1.9.0:rc2:*:*:*:*:*:*
Information

Published : 2007-02-06 07:28

Updated : 2017-07-29 01:30

NVD link : CVE-2007-0788

Mitre link : CVE-2007-0788

Products Affected
No products.
CWE
NVD-CWE-Other