Csteipp

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions prior to 1.19.5 MediaWiki versions 1.20.x prior to 1.20.4 **Description** A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via Lua function names. **Recommendations** For MediaWiki versions prior to 1.19.5, update to version 1.19.5 or later. For MediaWiki versions 1.20.x prior to 1.20.4, update to version 1.20.4 or later.

Name of the Vulnerable Software and Affected Versions: MediaWiki versions prior to 1.18.5 MediaWiki versions 1.19.x prior to 1.19.2 Description: The issue allows remote attackers to conduct clickjacking attacks via an embedded API response in an IFRAME element, due to the lack of a restrictive X-Frame-Options HTTP header. Recommendations: For MediaWiki versions prior to 1.18.5, update to version 1.18.5 or later. For MediaWiki versions 1.19.x prior to 1.19.2, update to version 1.19.2 or later.

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions prior to 1.23.11 MediaWiki versions 1.24.x prior to 1.24.4 MediaWiki versions 1.25.x prior to 1.25.3 **Description** The issue allows remote authenticated users to have an unspecified impact via multiple file uploads due to a lack of throttling for file uploads. **Recommendations** For MediaWiki versions prior to 1.23.11, update to version 1.23.11 or later. For MediaWiki versions 1.24.x prior to 1.24.4, update to version 1.24.4 or later. For MediaWiki versions 1.25.x prior to 1.25.3, update to version 1.25.3 or later.

**Name of the Vulnerable Software and Affected Versions** MediaWiki SemanticForms extension (affected versions not specified) **Description** The issue allows remote attackers to inject arbitrary web script or HTML, potentially leading to cross-site scripting (XSS) attacks. This can be achieved via the `wpSummary` parameter to "Special:FormEdit", the "Template label (optional)" field in a form, or a `Field name` in a template. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions prior to 1.19.24 MediaWiki versions 1.20.x through 1.23.9 MediaWiki versions 1.24.x through 1.24.2 **Description** The issue allows remote attackers to cause a denial of service, resulting in a "quadratic blowup" and memory consumption, via an XML file containing an entity declaration with long replacement text and many references to this entity. **Recommendations** For MediaWiki versions prior to 1.19.24, update to version 1.19.24 or later. For MediaWiki versions 1.20.x through 1.23.9, update to version 1.23.9 or later. For MediaWiki versions 1.24.x through 1.24.2, update to version 1.24.2 or later.

**Name of the Vulnerable Software and Affected Versions** MediaWiki Listings extension (affected versions not specified) **Description** The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via the `name` or `url` parameter. **Recommendations** For the MediaWiki Listings extension, consider restricting access to the `name` and `url` parameters until a patch is available. As a temporary workaround, avoid using the `name` and `url` parameters in sensitive operations to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MediaWiki CentralAuth extension versions prior to 1.18.6 MediaWiki CentralAuth extension versions 1.19.x prior to 1.19.3 MediaWiki CentralAuth extension versions 1.20.x prior to 1.20.1 **Description** The issue allows remote attackers to hijack web sessions. This is achieved via the centralauth Session cookie. **Recommendations** For versions prior to 1.18.6, update to version 1.18.6 or later. For versions 1.19.x prior to 1.19.3, update to version 1.19.3 or later. For versions 1.20.x prior to 1.20.1, update to version 1.20.1 or later.

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions prior to 1.18.6 MediaWiki versions 1.19.x prior to 1.19.3 MediaWiki versions 1.20.x prior to 1.20.1 **Description** The issue allows remote attackers to hijack web sessions via the session id. This is related to a session fixation vulnerability in Special:UserLogin. **Recommendations** For versions prior to 1.18.6, update to version 1.18.6 or later. For versions 1.19.x prior to 1.19.3, update to version 1.19.3 or later. For versions 1.20.x prior to 1.20.1, update to version 1.20.1 or later.

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions 1.19.x through 1.19.7 MediaWiki versions 1.20.x through 1.20.6 MediaWiki versions 1.21.x through 1.21.1 **Description** The issue allows remote attackers to obtain CSRF tokens and bypass the cross-site request forgery protection mechanism. This can be achieved via a JSONP request to the "wiki/api.php" endpoint. **Recommendations** For MediaWiki versions 1.19.x through 1.19.7, update to version 1.19.8 or later. For MediaWiki versions 1.20.x through 1.20.6, update to version 1.20.7 or later. For MediaWiki versions 1.21.x through 1.21.1, update to version 1.21.2 or later.

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions prior to 1.17.5 MediaWiki versions 1.18.x prior to 1.18.4 MediaWiki versions 1.19.x prior to 1.19.1 **Description** The issue is related to a cross-site scripting (XSS) vulnerability. It allows remote attackers to inject arbitrary web script or HTML via the `uselang` parameter to "index.php/Main page". **Recommendations** For MediaWiki versions prior to 1.17.5, update to version 1.17.5 or later. For MediaWiki versions 1.18.x prior to 1.18.4, update to version 1.18.4 or later. For MediaWiki versions 1.19.x prior to 1.19.1, update to version 1.19.1 or later.