VulnerableCode Package Details - pkg:alpm/archlinux/mediawiki@1.35.1-2

Search for packages

Vulnerability	Summary	Fixed by
VCID-1pw8-kzjs-aaah Aliases: CVE-2021-27291 GHSA-pq64-v7f5-gqh8 PYSEC-2021-141	In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming languages rely heavily on regular expressions. Some of the regular expressions have exponential or cubic worst-case complexity and are vulnerable to ReDoS. By crafting malicious input, an attacker can cause a denial of service.	1.35.2-1 Affected by 0 other vulnerabilities.
VCID-38ac-xq25-aaaq Aliases: CVE-2021-30157	An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. On ChangesList special pages such as Special:RecentChanges and Special:Watchlist, some of the rcfilters-filter-* label messages are output in HTML unescaped, leading to XSS.	1.35.2-1 Affected by 0 other vulnerabilities.
VCID-3bm7-tmfe-aaar Aliases: CVE-2021-30458 GHSA-5pqx-77vf-85rw	An issue was discovered in Wikimedia Parsoid before 0.11.1 and 0.12.x before 0.12.2. An attacker can send crafted wikitext that Utils/WTUtils.php will transform by using a <meta> tag, bypassing sanitization steps, and potentially allowing for XSS.	1.35.2-1 Affected by 0 other vulnerabilities.
VCID-3f62-6xn7-aaab Aliases: CVE-2021-20270 GHSA-9w8r-397f-prfh PYSEC-2021-140	An infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 may lead to denial of service when performing syntax highlighting of a Standard ML (SML) source file, as demonstrated by input that only contains the "exception" keyword.	1.35.2-1 Affected by 0 other vulnerabilities.
VCID-3wvj-4a66-aaaq Aliases: CVE-2021-30153	An issue was discovered in the VisualEditor extension in MediaWiki before 1.31.13, and 1.32.x through 1.35.x before 1.35.2. . When using VisualEditor to edit a MediaWiki user page belonging to an existing, but hidden, user, VisualEditor will disclose that the user exists. (It shouldn't because they are hidden.) This is related to ApiVisualEditor.	1.35.2-1 Affected by 0 other vulnerabilities.
VCID-b5eq-97nn-aaah Aliases: CVE-2021-30155	An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. ContentModelChange does not check if a user has correct permissions to create and set the content model of a nonexistent page.	1.35.2-1 Affected by 0 other vulnerabilities.
VCID-mj69-gx7y-aaah Aliases: CVE-2021-30152	An issue was discovered in MediaWiki before 1.31.13 and 1.32.x through 1.35.x before 1.35.2. When using the MediaWiki API to "protect" a page, a user is currently able to protect to a higher level than they currently have permissions for.	1.35.2-1 Affected by 0 other vulnerabilities.
VCID-p4de-8vmj-aaah Aliases: CVE-2021-30158	An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. Blocked users are unable to use Special:ResetTokens. This has security relevance because a blocked user might have accidentally shared a token, or might know that a token has been compromised, and yet is not able to block any potential future use of the token by an unauthorized party.	1.35.2-1 Affected by 0 other vulnerabilities.
VCID-qgwp-h9c7-aaad Aliases: CVE-2021-30156	An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. Special:Contributions can leak that a "hidden" user exists.	There are no reported fixed by versions.
VCID-y6ym-xe1c-aaaq Aliases: CVE-2021-30154	An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. On Special:NewFiles, all the mediastatistics-header-* messages are output in HTML unescaped, leading to XSS.	1.35.2-1 Affected by 0 other vulnerabilities.
VCID-zyhx-9g42-aaae Aliases: CVE-2021-30159	An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. Users can bypass intended restrictions on deleting pages in certain "fast double move" situations. MovePage::isValidMoveTarget() uses FOR UPDATE, but it's only called if Title::getArticleID() returns non-zero with no special flags. Next, MovePage::moveToInternal() will delete the page if getArticleID(READ_LATEST) is non-zero. Therefore, if the page is missing in the replica DB, isValidMove() will return true, and then moveToInternal() will unconditionally delete the page if it can be found in the master.	1.35.2-1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-1pw8-kzjs-aaah
Aliases:
CVE-2021-27291
GHSA-pq64-v7f5-gqh8
PYSEC-2021-141

In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming languages rely heavily on regular expressions. Some of the regular expressions have exponential or cubic worst-case complexity and are vulnerable to ReDoS. By crafting malicious input, an attacker can cause a denial of service.