Description

SQL injection vulnerability in MediaWiki 1.3.5 allows remote attackers to execute arbitrary SQL commands via SpecialMaintenance.

Remediation

References

CVE-2004-2186

Related Vulnerabilities

Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-2472)

IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-1113)

WordPress Plugin ThinkTwit Security Bypass (1.5.1)

Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-4654)

Grafana CVE-2022-39307 Vulnerability (CVE-2022-39307)

Severity

High

Classification

CVE-2004-2186

Tags

Missing Update Known Vulnerabilities