VDB

DEBIAN-CVE-2011-1580

DEBIAN-CVE-2011-1580 PUBLISHED CVSS 8.600000381469727 HIGH

The transwiki import functionality in MediaWiki before 1.16.3 does not properly check privileges, which allows remote authenticated users to perform imports from any wgImportSources wiki via a crafted POST request.

Risk Scores

CVSS 4.0
8.600000381469727
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Products

VendorProductVersions
Debian:13mediawiki0, 0, 0
Debian:12mediawiki0, 0, 0
Debian:14mediawiki0, 0, 0
Debian:11mediawiki0, 0, 0

Timeline

  • Apr 27, 2011 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›