VDB

GCVE-110-MAGEIA-2014-157

GCVE-110-MAGEIA-2014-157
Advisory Published
Vulnetix · Advisory published April 3, 2014
Updated mediawiki packages fix security vulnerability: Login CSRF issue in MediaWiki before 1.22.5 in Special:ChangePassword, whereby a user can be logged into an attackers account without being aware of it, allowing the attacker to track the user's activity (CVE-2014-2665). MediaWiki has been updated to version 1.22.5, fixing this and other issues.

Affected Products

VendorProductVersionsPlatforms
Mageiadrakwizard3.9.2-1.1.mga3 (unaffected), 0 (affected)
Mageiamediawiki0 (affected), 1.22.5-1.mga4 (unaffected), 0 (affected), 1.22.5-1.mga4 (unaffected)
Mageiamediawiki0 (affected), 1.22.5-1.mga3 (unaffected), 1.22.5-1.mga3 (unaffected), 0 (affected)

Browse GCVE Records

73,734 records in the GCVE database · Updated July 18, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›