Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2008-0460
Modified
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-25 Jan, 2008 | 16:00
Updated At-23 Jul, 2021 | 15:12

Cross-site scripting (XSS) vulnerability in api.php in (1) MediaWiki 1.11 through 1.11.0rc1, 1.10 through 1.10.2, 1.9 through 1.9.4, and 1.8; and (2) the BotQuery extension for MediaWiki 1.7 and earlier; when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.04.3MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
CPE Matches

Wikimedia Foundation
mediawiki
>>mediawiki>>1.7.0
cpe:2.3:a:mediawiki:mediawiki:1.7.0:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.8.0
cpe:2.3:a:mediawiki:mediawiki:1.8.0:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.8.1
cpe:2.3:a:mediawiki:mediawiki:1.8.1:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.8.2
cpe:2.3:a:mediawiki:mediawiki:1.8.2:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.8.3
cpe:2.3:a:mediawiki:mediawiki:1.8.3:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.8.4
cpe:2.3:a:mediawiki:mediawiki:1.8.4:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.9.0
cpe:2.3:a:mediawiki:mediawiki:1.9.0:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.9.1
cpe:2.3:a:mediawiki:mediawiki:1.9.1:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.9.2
cpe:2.3:a:mediawiki:mediawiki:1.9.2:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.9.3
cpe:2.3:a:mediawiki:mediawiki:1.9.3:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.9.4
cpe:2.3:a:mediawiki:mediawiki:1.9.4:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.10.0
cpe:2.3:a:mediawiki:mediawiki:1.10.0:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.10.1
cpe:2.3:a:mediawiki:mediawiki:1.10.1:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.10.2
cpe:2.3:a:mediawiki:mediawiki:1.10.2:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.11
cpe:2.3:a:mediawiki:mediawiki:1.11:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.11.0rc1
cpe:2.3:a:mediawiki:mediawiki:1.11.0rc1:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki_botquery_ext>>*
cpe:2.3:a:mediawiki:mediawiki_botquery_ext:*:*:*:*:*:*:*:*
Microsoft Corporation
microsoft
>>internet_explorer>>*
cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki>>1.7.0
cpe:2.3:a:mediawiki:mediawiki:1.7.0:*:*:*:*:*:*:*
Wikimedia Foundation
mediawiki
>>mediawiki_botquery_ext>>*
cpe:2.3:a:mediawiki:mediawiki_botquery_ext:*:*:*:*:*:*:*:*
Microsoft Corporation
microsoft
>>internet_explorer>>*
cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-79Primarynvd@nist.gov
Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References
HyperlinkSourceResource
http://lists.wikimedia.org/pipermail/mediawiki-announce/2008-January/000068.htmlcve@mitre.org
N/A
http://secunia.com/advisories/28629cve@mitre.org
Vendor Advisory
http://secunia.com/advisories/29266cve@mitre.org
N/A
http://www.securityfocus.com/bid/28137cve@mitre.org
N/A
http://www.vupen.com/english/advisories/2008/0280cve@mitre.org
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/39901cve@mitre.org
N/A
https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00147.htmlcve@mitre.org
N/A
https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00189.htmlcve@mitre.org
N/A
Change History
0Changes found

Details not found