更新: 2423 个文件 - 2026-03-18 14:23:01

2026-03-18 14:23:01 -07:00
--- a/08-threat-intel/registry/advisories/mediawiki--CVE-2008-5687.json
+++ b/08-threat-intel/registry/advisories/mediawiki--CVE-2008-5687.json
@@ -0,0 +1,68 @@
+{
+  "canonical_id": "mediawiki--CVE-2008-5687",
+  "system_id": "mediawiki",
+  "display_name": "MediaWiki",
+  "category": "cms",
+  "advisory_mode": "core",
+  "title": "CVE-2008-5687",
+  "summary": "MediaWiki 1.11, and other versions before 1.13.3, does not properly protect against the download of backups of deleted images, which might allow remote attackers to obtain sensitive information via requests for files in images/deleted/.",
+  "published_at": "2008-12-19T17:30:03.360",
+  "updated_at": "2025-04-09T00:30:58.490",
+  "severity": "medium",
+  "cvss_score": 5.0,
+  "exploit_status": "unknown",
+  "source_confidence": "official",
+  "official_source_url": "http://lists.wikimedia.org/pipermail/mediawiki-announce/2008-December/000080.html",
+  "secondary_source_urls": [
+    "http://secunia.com/advisories/33349",
+    "https://exchange.xforce.ibmcloud.com/vulnerabilities/47678",
+    "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg01256.html",
+    "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg01309.html"
+  ],
+  "aliases": [
+    "CVE-2008-5687"
+  ],
+  "cve_ids": [
+    "CVE-2008-5687"
+  ],
+  "ghsa_ids": [],
+  "osv_ids": [],
+  "affected_versions": [],
+  "fixed_versions": [],
+  "package_name": null,
+  "render_markdown": false,
+  "case_path": null,
+  "secure_code_topics": [
+    "xss-output-encoding",
+    "authz-server-side-recheck",
+    "file-upload-validation"
+  ],
+  "status": "triage",
+  "triage_reasons": [
+    "missing affected/fixed version details"
+  ],
+  "verification_status": "triage-manual",
+  "verification_mode": "synthetic",
+  "last_verified_at": null,
+  "last_run_id": null,
+  "evidence_bundle": null,
+  "historical_status": null,
+  "latest_status": null,
+  "browser_evidence": {
+    "required": false,
+    "present": false,
+    "refs": []
+  },
+  "repro_profile_id": "xss-generic",
+  "artifact_mode": "synthetic",
+  "blocked_reason": null,
+  "metadata": {
+    "source_names": [
+      "NVD MediaWiki"
+    ],
+    "source_kinds": [
+      "nvd-search"
+    ],
+    "candidate_count": 1
+  }
+}