Search for packages
| purl | pkg:alpm/archlinux/mediawiki@1.29.2-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-gd5c-rvxf-aaam | MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows remote attackers to inject > (greater than) characters via the id attribute of a headline. |
CVE-2017-8812
|
| VCID-gh8f-mrk4-aaar | MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2, when a private wiki is configured, provides different error messages for failed login attempts depending on whether the username exists, which allows remote attackers to enumerate account names and conduct brute-force attacks via a series of requests. |
CVE-2017-8810
|
| VCID-mbfm-pxzx-aaaa | The language converter in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows attribute injection attacks via glossary rules. |
CVE-2017-8815
|
| VCID-qzqa-kqnf-aaak | Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains an information disclosure flaw, where the api.log might contain passwords in plaintext. |
CVE-2017-0361
|
| VCID-r4f3-hm1w-aaap | MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has XSS when the $wgShowExceptionDetails setting is false and the browser sends non-standard URL escaping. |
CVE-2017-8808
|
| VCID-uuyp-pj3y-aaac | The implementation of raw message parameter expansion in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows HTML mangling attacks. |
CVE-2017-8811
|
| VCID-w1e2-vvzz-aaam | The language converter in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows attackers to replace text inside tags via a rule definition followed by "a lot of junk." |
CVE-2017-8814
|
| VCID-xfq2-pqeb-aaah | api.php in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has a Reflected File Download vulnerability. |
CVE-2017-8809
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:46:08.930284+00:00 | Arch Linux Importer | Fixing | VCID-qzqa-kqnf-aaak | https://security.archlinux.org/AVG-490 | 36.0.0 |
| 2025-03-28T07:46:08.909708+00:00 | Arch Linux Importer | Fixing | VCID-r4f3-hm1w-aaap | https://security.archlinux.org/AVG-490 | 36.0.0 |
| 2025-03-28T07:46:08.889282+00:00 | Arch Linux Importer | Fixing | VCID-xfq2-pqeb-aaah | https://security.archlinux.org/AVG-490 | 36.0.0 |
| 2025-03-28T07:46:08.868432+00:00 | Arch Linux Importer | Fixing | VCID-gh8f-mrk4-aaar | https://security.archlinux.org/AVG-490 | 36.0.0 |
| 2025-03-28T07:46:08.847712+00:00 | Arch Linux Importer | Fixing | VCID-uuyp-pj3y-aaac | https://security.archlinux.org/AVG-490 | 36.0.0 |
| 2025-03-28T07:46:08.826967+00:00 | Arch Linux Importer | Fixing | VCID-gd5c-rvxf-aaam | https://security.archlinux.org/AVG-490 | 36.0.0 |
| 2025-03-28T07:46:08.806280+00:00 | Arch Linux Importer | Fixing | VCID-w1e2-vvzz-aaam | https://security.archlinux.org/AVG-490 | 36.0.0 |
| 2025-03-28T07:46:08.785860+00:00 | Arch Linux Importer | Fixing | VCID-mbfm-pxzx-aaaa | https://security.archlinux.org/AVG-490 | 36.0.0 |
| 2024-09-18T02:01:17.879912+00:00 | Arch Linux Importer | Fixing | VCID-qzqa-kqnf-aaak | https://security.archlinux.org/AVG-490 | 34.0.1 |
| 2024-09-18T02:01:17.851179+00:00 | Arch Linux Importer | Fixing | VCID-r4f3-hm1w-aaap | https://security.archlinux.org/AVG-490 | 34.0.1 |
| 2024-09-18T02:01:17.824429+00:00 | Arch Linux Importer | Fixing | VCID-xfq2-pqeb-aaah | https://security.archlinux.org/AVG-490 | 34.0.1 |
| 2024-09-18T02:01:17.797768+00:00 | Arch Linux Importer | Fixing | VCID-gh8f-mrk4-aaar | https://security.archlinux.org/AVG-490 | 34.0.1 |
| 2024-09-18T02:01:17.770111+00:00 | Arch Linux Importer | Fixing | VCID-uuyp-pj3y-aaac | https://security.archlinux.org/AVG-490 | 34.0.1 |
| 2024-09-18T02:01:17.742652+00:00 | Arch Linux Importer | Fixing | VCID-gd5c-rvxf-aaam | https://security.archlinux.org/AVG-490 | 34.0.1 |
| 2024-09-18T02:01:17.717765+00:00 | Arch Linux Importer | Fixing | VCID-w1e2-vvzz-aaam | https://security.archlinux.org/AVG-490 | 34.0.1 |
| 2024-09-18T02:01:17.690046+00:00 | Arch Linux Importer | Fixing | VCID-mbfm-pxzx-aaaa | https://security.archlinux.org/AVG-490 | 34.0.1 |
| 2024-01-03T22:27:29.014029+00:00 | Arch Linux Importer | Fixing | VCID-qzqa-kqnf-aaak | https://security.archlinux.org/AVG-490 | 34.0.0rc1 |
| 2024-01-03T22:27:28.989519+00:00 | Arch Linux Importer | Fixing | VCID-r4f3-hm1w-aaap | https://security.archlinux.org/AVG-490 | 34.0.0rc1 |
| 2024-01-03T22:27:28.965368+00:00 | Arch Linux Importer | Fixing | VCID-xfq2-pqeb-aaah | https://security.archlinux.org/AVG-490 | 34.0.0rc1 |
| 2024-01-03T22:27:28.940901+00:00 | Arch Linux Importer | Fixing | VCID-gh8f-mrk4-aaar | https://security.archlinux.org/AVG-490 | 34.0.0rc1 |
| 2024-01-03T22:27:28.916762+00:00 | Arch Linux Importer | Fixing | VCID-uuyp-pj3y-aaac | https://security.archlinux.org/AVG-490 | 34.0.0rc1 |
| 2024-01-03T22:27:28.890785+00:00 | Arch Linux Importer | Fixing | VCID-gd5c-rvxf-aaam | https://security.archlinux.org/AVG-490 | 34.0.0rc1 |
| 2024-01-03T22:27:28.866798+00:00 | Arch Linux Importer | Fixing | VCID-w1e2-vvzz-aaam | https://security.archlinux.org/AVG-490 | 34.0.0rc1 |
| 2024-01-03T22:27:28.845275+00:00 | Arch Linux Importer | Fixing | VCID-mbfm-pxzx-aaaa | https://security.archlinux.org/AVG-490 | 34.0.0rc1 |