Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/mediawiki@1.4.9?distro=trixie
purl pkg:deb/debian/mediawiki@1.4.9?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (13)
Vulnerability Summary Aliases
VCID-1ner-ujf7-yfav Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki 1.3.5 allow remote attackers to execute arbitrary scripts and/or SQL queries via (1) the UnicodeConverter extension, (2) raw page views, (3) SpecialIpblocklist, (4) SpecialEmailuser, (5) SpecialMaintenance, and (6) ImagePage. CVE-2004-2185
VCID-3mg7-t5t5-akac Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.x before 1.4.6 and 1.5 before 1.5beta3 allows remote attackers to inject arbitrary web script or HTML via a parameter in the page move template, a different vulnerability than CVE-2005-1888. CVE-2005-2215
VCID-484p-b45x-nqcd Cross-site scripting (XSS) vulnerability in MediaWiki 1.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the page move template. CVE-2005-2396
VCID-9xem-j55b-cbad Unknown vulnerability in ImagePage for MediaWiki 1.3.5, related to "filename validation," has unknown impact and attack vectors. CVE-2004-2187
VCID-b9ku-hpp1-zkd2 Cross-site scripting (XSS) vulnerability in 'raw' page output mode for MediaWiki 1.3.4 and earlier allows remote attackers to inject arbitrary web script or HTML. CVE-2004-2152
VCID-e4uj-5hwm-t7a9 Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki before 1.4.9 allow remote attackers to inject arbitrary web script or HTML via (1) <math> tags or (2) Extension or <nowiki> sections that "bypass HTML style attribute restrictions" that are intended to protect against XSS vulnerabilities in Internet Explorer clients. CVE-2005-3165
VCID-gcrr-6tnm-pyar Directory traversal vulnerability in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allows remote attackers to delete arbitrary files or determine file existence via a parameter related to image deletion. CVE-2005-0536
VCID-kz44-vtd4-kbc5 Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.2, when using HTML Tidy ($wgUseTidy), allows remote attackers to inject arbitrary web script or HTML via unknown vectors. CVE-2005-1245
VCID-n6vz-mhwt-97g1 Cross-site request forgery (CSRF) vulnerability in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allows remote attackers to perform unauthorized actions as authenticated MediaWiki users. CVE-2005-0535
VCID-p5r3-bpn6-17df Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.5 allows remote attackers to inject arbitrary web script via HTML attributes in page templates. CVE-2005-1888
VCID-qmtg-trvt-kbe3 MediaWiki 1.3.8 and earlier, when used with Apache mod_mime, does not properly handle files with two file extensions, such as .php.rar, which allows remote attackers to upload and execute arbitrary code. CVE-2004-1405
VCID-tkmz-uep2-4uev SQL injection vulnerability in MediaWiki 1.3.5 allows remote attackers to execute arbitrary SQL commands via SpecialMaintenance. CVE-2004-2186
VCID-v6tq-k16u-qbay Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki 1.3.x before 1.3.11 and 1.4 beta before 1.4 rc1 allow remote attackers to inject arbitrary web script. CVE-2005-0534

Date Actor Action Vulnerability Source VulnerableCode Version
2026-05-02T02:27:27.606145+00:00 Debian Importer Fixing VCID-qmtg-trvt-kbe3 https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T23:54:55.365504+00:00 Debian Importer Fixing VCID-gcrr-6tnm-pyar https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T22:41:51.477573+00:00 Debian Importer Fixing VCID-3mg7-t5t5-akac https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T22:30:36.380415+00:00 Debian Importer Fixing VCID-tkmz-uep2-4uev https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T22:23:48.240242+00:00 Debian Importer Fixing VCID-v6tq-k16u-qbay https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T22:22:11.908326+00:00 Debian Importer Fixing VCID-p5r3-bpn6-17df https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T22:06:04.193324+00:00 Debian Importer Fixing VCID-9xem-j55b-cbad https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T21:57:51.707043+00:00 Debian Importer Fixing VCID-n6vz-mhwt-97g1 https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T21:56:22.261292+00:00 Debian Importer Fixing VCID-e4uj-5hwm-t7a9 https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T21:53:48.396867+00:00 Debian Importer Fixing VCID-b9ku-hpp1-zkd2 https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T21:51:36.320257+00:00 Debian Importer Fixing VCID-1ner-ujf7-yfav https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T21:50:09.997417+00:00 Debian Importer Fixing VCID-kz44-vtd4-kbc5 https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-05-01T21:44:05.793438+00:00 Debian Importer Fixing VCID-484p-b45x-nqcd https://security-tracker.debian.org/tracker/data/json 38.6.0
2026-04-29T12:52:19.601521+00:00 Debian Importer Fixing VCID-9xem-j55b-cbad https://security-tracker.debian.org/tracker/data/json 38.5.0
2026-04-29T12:46:30.918471+00:00 Debian Importer Fixing VCID-n6vz-mhwt-97g1 https://security-tracker.debian.org/tracker/data/json 38.5.0
2026-04-29T12:45:29.715344+00:00 Debian Importer Fixing VCID-e4uj-5hwm-t7a9 https://security-tracker.debian.org/tracker/data/json 38.5.0
2026-04-29T12:43:40.519191+00:00 Debian Importer Fixing VCID-b9ku-hpp1-zkd2 https://security-tracker.debian.org/tracker/data/json 38.5.0
2026-04-29T12:42:05.683925+00:00 Debian Importer Fixing VCID-1ner-ujf7-yfav https://security-tracker.debian.org/tracker/data/json 38.5.0
2026-04-29T12:41:03.970820+00:00 Debian Importer Fixing VCID-kz44-vtd4-kbc5 https://security-tracker.debian.org/tracker/data/json 38.5.0
2026-04-29T12:36:51.140229+00:00 Debian Importer Fixing VCID-484p-b45x-nqcd https://security-tracker.debian.org/tracker/data/json 38.5.0
2026-04-16T10:42:43.158854+00:00 Debian Importer Fixing VCID-qmtg-trvt-kbe3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:30:56.549221+00:00 Debian Importer Fixing VCID-3mg7-t5t5-akac https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:34:42.188903+00:00 Debian Importer Fixing VCID-gcrr-6tnm-pyar https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:57:58.520436+00:00 Debian Importer Fixing VCID-tkmz-uep2-4uev https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:54:58.653136+00:00 Debian Importer Fixing VCID-v6tq-k16u-qbay https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:54:19.902169+00:00 Debian Importer Fixing VCID-p5r3-bpn6-17df https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:47:32.059541+00:00 Debian Importer Fixing VCID-9xem-j55b-cbad https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:44:12.734419+00:00 Debian Importer Fixing VCID-n6vz-mhwt-97g1 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:43:27.278503+00:00 Debian Importer Fixing VCID-e4uj-5hwm-t7a9 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:42:23.364589+00:00 Debian Importer Fixing VCID-b9ku-hpp1-zkd2 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:41:25.350294+00:00 Debian Importer Fixing VCID-1ner-ujf7-yfav https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:40:45.719449+00:00 Debian Importer Fixing VCID-kz44-vtd4-kbc5 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:38:13.481204+00:00 Debian Importer Fixing VCID-484p-b45x-nqcd https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-12T18:14:20.599638+00:00 Debian Importer Fixing VCID-3mg7-t5t5-akac https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-12T18:14:20.229430+00:00 Debian Importer Fixing VCID-1ner-ujf7-yfav https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-12T18:14:20.134780+00:00 Debian Importer Fixing VCID-qmtg-trvt-kbe3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:22:51.362104+00:00 Debian Importer Fixing VCID-gcrr-6tnm-pyar https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:00:53.794512+00:00 Debian Importer Fixing VCID-tkmz-uep2-4uev https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:59:00.009680+00:00 Debian Importer Fixing VCID-v6tq-k16u-qbay https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:58:44.341431+00:00 Debian Importer Fixing VCID-p5r3-bpn6-17df https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:54:24.676145+00:00 Debian Importer Fixing VCID-9xem-j55b-cbad https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:52:10.687877+00:00 Debian Importer Fixing VCID-n6vz-mhwt-97g1 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:51:41.113154+00:00 Debian Importer Fixing VCID-e4uj-5hwm-t7a9 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:51:03.770778+00:00 Debian Importer Fixing VCID-b9ku-hpp1-zkd2 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:50:02.955049+00:00 Debian Importer Fixing VCID-kz44-vtd4-kbc5 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:48:26.924075+00:00 Debian Importer Fixing VCID-484p-b45x-nqcd https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:45:39.909956+00:00 Debian Importer Fixing VCID-e4uj-5hwm-t7a9 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:45:39.857204+00:00 Debian Importer Fixing VCID-484p-b45x-nqcd https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:45:39.806797+00:00 Debian Importer Fixing VCID-3mg7-t5t5-akac https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:45:39.753479+00:00 Debian Importer Fixing VCID-p5r3-bpn6-17df https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:45:39.697201+00:00 Debian Importer Fixing VCID-kz44-vtd4-kbc5 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:45:39.640307+00:00 Debian Importer Fixing VCID-gcrr-6tnm-pyar https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:45:39.583643+00:00 Debian Importer Fixing VCID-n6vz-mhwt-97g1 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:45:39.526919+00:00 Debian Importer Fixing VCID-v6tq-k16u-qbay https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:45:39.470286+00:00 Debian Importer Fixing VCID-9xem-j55b-cbad https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:45:39.413320+00:00 Debian Importer Fixing VCID-tkmz-uep2-4uev https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:45:39.356347+00:00 Debian Importer Fixing VCID-1ner-ujf7-yfav https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:45:39.299744+00:00 Debian Importer Fixing VCID-b9ku-hpp1-zkd2 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:45:39.238779+00:00 Debian Importer Fixing VCID-qmtg-trvt-kbe3 https://security-tracker.debian.org/tracker/data/json 38.1.0