Showing 1 - 1 of 1

CVE-2023-36674

Status Candidate

Overview

An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, 1.39.x before 1.39.4, and 1.40.x before 1.40.1. It is possible to bypass the Bad image list (aka badFile) by using the thumb parameter (aka Manualthumb) of the File syntax.

Related Files

Debian Security Advisory 5447-1: Posted Jul 6, 2023; Authored by Debian | Site debian.org; Debian Linux Security Advisory 5447-1 - Multiple security issues were discovered in MediaWiki, a website engine for collaborative work, which could result in cross-site scripting, a bypass of vandalism protections or information disclosure.; tags | advisory, xss, info disclosure; systems | linux, debian; advisories | CVE-2023-29141, CVE-2023-36674, CVE-2023-36675; SHA-256 | e511da2a3822e1112beed6351e773b662687842336390f353b7c9ee161a236ee; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 250 files
indoushka 150 files
Ubuntu 90 files
Gentoo 32 files
Debian 24 files
LiquidWorm 15 files
Apple 11 files
malvuln 8 files
Google Security Research 7 files
verylazytech 4 files

File Archives

Systems

AIX (430)
Apple (2,117)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,143)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,599)
HPUX (881)
iOS (391)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,538)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,026)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,918)
UNIX (9,469)
UnixWare (188)
Windows (6,784)
Other

CVE-2023-36674

Overview

Related Files

File Archive:

October 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems