Language:
https://phabricator.wikimedia.org/T72672
https://seclists.org/oss-sec/2014/q4/67
https://www.mediawiki.org/wiki/Release_notes/1.19#MediaWiki_1.19.20
https://www.mediawiki.org/wiki/Release_notes/1.22#MediaWiki_1.22.12
https://www.mediawiki.org/wiki/Release_notes/1.23#MediaWiki_1.23.5
Severity: Low
ID: 78109
File Name: mediawiki_1_23_5.nasl
Version: 1.10
Type: Remote
Family: CGI abuses : XSS
Published: 10/9/2014
Updated: 5/14/2025
Configuration: Enable paranoid mode, Enable thorough checks (optional)
Supported Sensors: Nessus
Enable CGI Scanning: true
Risk Factor: Low
Score: 2.3
Percentile: 8.67
Risk Factor: Low
Base Score: 3.5
Temporal Score: 3
Vector: CVSS2#AV:N/AC:M/Au:S/C:N/I:P/A:N
CVSS Score Source: CVE-2014-7295
CPE: cpe:/a:mediawiki:mediawiki
Required KB Items: Settings/ParanoidReport, installed_sw/MediaWiki, www/PHP
Exploit Ease: No exploit is required
Patch Publication Date: 10/2/2014
Vulnerability Publication Date: 10/2/2014
CVE: CVE-2014-7295
BID: 70238