MediaWiki Sortable Table Feature HTML Injection Vulnerability
BID:22397
Info
MediaWiki Sortable Table Feature HTML Injection Vulnerability
| Bugtraq ID: | 22397 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-0788 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 05 2007 12:00AM |
| Updated: | May 12 2015 07:34PM |
| Credit: | The vendor disclosed this issue. |
| Vulnerable: |
MediaWiki MediaWiki 1.9.1 MediaWiki MediaWiki 1.9 MediaWiki MediaWiki 1.9.0rc2 MediaWiki MediaWiki 1.9.0rc1 |
| Not Vulnerable: |
MediaWiki MediaWiki 1.9.2 |
Discussion
MediaWiki Sortable Table Feature HTML Injection Vulnerability
MediaWiki is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
MediaWiki versions 1.9.0 prior to 1.9.2 are vulnerable to this issue.
MediaWiki is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
MediaWiki versions 1.9.0 prior to 1.9.2 are vulnerable to this issue.
Exploit / POC
MediaWiki Sortable Table Feature HTML Injection Vulnerability
An attacker may exploit this issue via a web browser.
An attacker may exploit this issue via a web browser.
Solution / Fix
MediaWiki Sortable Table Feature HTML Injection Vulnerability
Solution:
The vendor has released fixes to address this issue. Please see the references for more information.
MediaWiki MediaWiki 1.9.0rc2
MediaWiki MediaWiki 1.9.0rc1
MediaWiki MediaWiki 1.9
MediaWiki MediaWiki 1.9.1
Solution:
The vendor has released fixes to address this issue. Please see the references for more information.
MediaWiki MediaWiki 1.9.0rc2
-
MediaWiki MediaWiki 1.9.2
http://sourceforge.net/project/showfiles.php?group_id=34373&package_id =93103&release_id=480971
MediaWiki MediaWiki 1.9.0rc1
-
MediaWiki MediaWiki 1.9.2
http://sourceforge.net/project/showfiles.php?group_id=34373&package_id =93103&release_id=480971
MediaWiki MediaWiki 1.9
-
MediaWiki MediaWiki 1.9.2
http://sourceforge.net/project/showfiles.php?group_id=34373&package_id =93103&release_id=480971
MediaWiki MediaWiki 1.9.1
-
MediaWiki MediaWiki 1.9.2
http://sourceforge.net/project/showfiles.php?group_id=34373&package_id =93103&release_id=480971
References
MediaWiki Sortable Table Feature HTML Injection Vulnerability
References:
References:
- MediaWiki Homepage (MediaWiki)
- Release Notes 1.9.2 (MediaWiki)