CVE-2009-4589

Cross-site scripting (XSS) vulnerability in the Special:Block implementation in the getContribsLink function in SpecialBlockip.php in MediaWiki 1.14.0 and 1.15.0 allows remote attackers to inject arbitrary web script or HTML via the ip parameter.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mediawiki:mediawik:i1.15.0:*:*:*:*:*:*:*
cpe:2.3:a:mediawiki:mediawiki:1.14.0:*:*:*:*:*:*:*

Information

Published : 2010-01-07 10:30

Updated : 2017-08-16 18:31


NVD link : CVE-2009-4589

Mitre link : CVE-2009-4589


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

mediawiki

  • mediawik
  • mediawiki