VDB
CVE-2014-2853
CVE-2014-2853
PUBLISHED
CVSS 4.300000190734863 MEDIUM
Cross-site scripting vulnerability in includes/actions/InfoAction.php
EPSS 0.45% · 64.2th percentile
Risk Scores
CVSS 2.0
4.300000190734863
EPSS Score
0.45%
64.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| mediawiki | mediawiki | 1.19.1, 1.12.1, 1.14.0 |
| mediawiki | core | 1.22.0, 0 |
Timeline
- Apr 29, 2014 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- 67068 vdb
- 1030161 vdb
- 58262 third-party-advisory
- https://github.com/wikimedia/mediawiki-core/commit/0b695ae09aada343ab59be4a3c9963995a1143b6 url
- [MediaWiki-announce] 20140424 MediaWiki Security and Maintenance Releases: 1.22.6 and 1.21.9 mailing-list
- https://www.mediawiki.org/wiki/Release_notes/1.22#Changes_since_1.22.5 url
- https://bugzilla.wikimedia.org/show_bug.cgi?id=63251 url
- https://www.mediawiki.org/wiki/Release_notes/1.21#Changes_since_1.21.8 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1091967 url
- https://nvd.nist.gov/vuln/detail/CVE-2014-2853 advisory
- https://github.com/wikimedia/mediawiki package