更新: 2423 个文件 - 2026-03-18 14:23:01

这个提交包含在:
hao
2026-03-18 14:23:01 -07:00
父节点 9a5f48cdf7
当前提交 96b5353a91
修改 2423 个文件,包含 239337 行新增2806 行删除

查看文件

@@ -0,0 +1,69 @@
{
"canonical_id": "mediawiki--CVE-2007-1055",
"system_id": "mediawiki",
"display_name": "MediaWiki",
"category": "cms",
"advisory_mode": "core",
"title": "CVE-2007-1055",
"summary": "Cross-site scripting (XSS) vulnerability in the AJAX features in index.php in MediaWiki 1.9.x before 1.9.0rc2, and 1.8.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the rs parameter. NOTE: this issue might be a duplicate of CVE-2007-0177.",
"published_at": "2007-02-21T23:28:00.000",
"updated_at": "2025-04-09T00:30:58.490",
"severity": "medium",
"cvss_score": 6.8,
"exploit_status": "unknown",
"source_confidence": "official",
"official_source_url": "http://osvdb.org/37343",
"secondary_source_urls": [
"http://securityreason.com/securityalert/2274",
"http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_9_0/phase3/RELEASE-NOTES",
"http://www.bugsec.com/articles.php?Security=24",
"http://www.securityfocus.com/archive/1/460596/100/0/threaded",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/32586"
],
"aliases": [
"CVE-2007-1055"
],
"cve_ids": [
"CVE-2007-1055"
],
"ghsa_ids": [],
"osv_ids": [],
"affected_versions": [],
"fixed_versions": [],
"package_name": null,
"render_markdown": false,
"case_path": null,
"secure_code_topics": [
"xss-output-encoding",
"authz-server-side-recheck",
"file-upload-validation"
],
"status": "triage",
"triage_reasons": [
"missing affected/fixed version details"
],
"verification_status": "triage-manual",
"verification_mode": "synthetic",
"last_verified_at": null,
"last_run_id": null,
"evidence_bundle": null,
"historical_status": null,
"latest_status": null,
"browser_evidence": {
"required": false,
"present": false,
"refs": []
},
"repro_profile_id": "xss-generic",
"artifact_mode": "synthetic",
"blocked_reason": null,
"metadata": {
"source_names": [
"NVD MediaWiki"
],
"source_kinds": [
"nvd-search"
],
"candidate_count": 1
}
}