Search for vulnerabilities
| Vulnerability ID | VCID-crf5-vebr-aaam |
| Aliases |
CVE-2011-0003
|
| Summary | MediaWiki before 1.16.1, when user or site JavaScript or CSS is enabled, allows remote attackers to conduct clickjacking attacks via unspecified vectors. |
| Status | Published |
| Exploitability | 0.5 |
| Weighted Severity | 5.2 |
| Risk | 2.6 |
| Affected and Fixed Packages | Package Details |
| CWE-20 | Improper Input Validation |
| Exploitability (E) | Access Vector (AV) | Access Complexity (AC) | Authentication (Au) | Confidentiality Impact (C) | Integrity Impact (I) | Availability Impact (A) |
|---|---|---|---|---|---|---|
high functional unproven proof_of_concept not_defined |
local adjacent_network network |
high medium low |
multiple single none |
none partial complete |
none partial complete |
none partial complete |
| Percentile | 0.81401 |
| EPSS Score | 0.00750 |
| Published At | Nov. 1, 2024, midnight |
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| There are no relevant records. | ||||