VDB
DEBIAN-CVE-2011-1580
DEBIAN-CVE-2011-1580
PUBLISHED
CVSS 8.600000381469727 HIGH
The transwiki import functionality in MediaWiki before 1.16.3 does not properly check privileges, which allows remote authenticated users to perform imports from any wgImportSources wiki via a crafted POST request.
Risk Scores
CVSS 4.0
8.600000381469727
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:13 | mediawiki | 0, 0, 0 |
| Debian:12 | mediawiki | 0, 0, 0 |
| Debian:14 | mediawiki | 0, 0, 0 |
| Debian:11 | mediawiki | 0, 0, 0 |
Timeline
- Apr 27, 2011 CVE Published
- Apr 28, 2026 CVE Updated