VDB
GCVE-110-MAGEIA-2014-197
GCVE-110-MAGEIA-2014-197
Advisory Published
Updated mediawiki packages fix security vulnerability:
XSS vulnerability in MediaWiki before 1.22.6, where if the default sort key
is set to a string containing a script, the script will be executed when the
page is viewed using the info action (CVE-2014-2853).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | mediawiki | 0 (affected), 1.22.6-1.mga4 (unaffected), 0 (affected), 1.22.6-1.mga4 (unaffected) | — |
| Mageia | drakconf | 12.52-1.mga4 (unaffected), 0 (affected) | — |
| Mageia | mediawiki | 1.22.6-1.mga3 (unaffected), 0 (affected), 0 (affected), 1.22.6-1.mga3 (unaffected) | — |
Aliases
References
Browse GCVE Records
73,280 records in the GCVE database · Updated July 17, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.