CVSS: 4.3EPSS: 0%CPEs: 13EXPL: 0CVE-2005-3165
https://notcve.org/view.php?id=CVE-2005-3165
Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki before 1.4.9 allow remote attackers to inject arbitrary web script or HTML via (1) <math> tags or (2) Extension or <nowiki> sections that "bypass HTML style attribute restrictions" that are intended to protect against XSS vulnerabilities in Internet Explorer clients. • http://lwn.net/Articles/153906 http://secunia.com/advisories/16932 http://sourceforge.net/project/shownotes.php?release_id=352777 •
CVSS: 5.0EPSS: 1%CPEs: 30EXPL: 0CVE-2005-3166
https://notcve.org/view.php?id=CVE-2005-3166
Unspecified vulnerability in "edit submission handling" for MediaWiki 1.4.x before 1.4.10 and 1.3.x before 1.3.16 allows remote attackers to cause a denial of service (corruption of the previous submission) via a crafted URL. • http://sourceforge.net/project/shownotes.php?release_id=358163 http://www.novell.com/linux/security/advisories/2005_22_sr.html http://www.osvdb.org/19956 •
CVSS: 4.3EPSS: 0%CPEs: 31EXPL: 0CVE-2005-2396
https://notcve.org/view.php?id=CVE-2005-2396
Cross-site scripting (XSS) vulnerability in MediaWiki 1.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the page move template. Vulnerabilidad de secuencia de comandos en sitios cruzados en MediaWiki 1.4.6 y anteriores permite que atacantes remotos inyecten script web arbitrario o HTML mediante un parámetro a la plantilla de mover página. • http://secunia.com/advisories/15950 http://secunia.com/advisories/16130 http://security.gentoo.org/glsa/glsa-200507-18.xml http://www.osvdb.org/17763 http://www.securityfocus.com/bid/14327 https://exchange.xforce.ibmcloud.com/vulnerabilities/21491 •
CVSS: 4.3EPSS: 0%CPEs: 9EXPL: 0CVE-2005-2215
https://notcve.org/view.php?id=CVE-2005-2215
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.x before 1.4.6 and 1.5 before 1.5beta3 allows remote attackers to inject arbitrary web script or HTML via a parameter in the page move template, a different vulnerability than CVE-2005-1888. • http://secunia.com/advisories/15950 http://sourceforge.net/project/shownotes.php?release_id=340290 http://www.novell.com/linux/security/advisories/2005_19_sr.html http://www.securityfocus.com/bid/14181 •
CVSS: 4.3EPSS: 0%CPEs: 20EXPL: 0CVE-2005-1888
https://notcve.org/view.php?id=CVE-2005-1888
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.5 allows remote attackers to inject arbitrary web script via HTML attributes in page templates. • http://sourceforge.net/project/shownotes.php?release_id=332231 http://www.novell.com/linux/security/advisories/2005_19_sr.html http://www.securityfocus.com/bid/13861 •