PublicDate: 2008-01-25 16:00:00 UTC
Candidate: CVE-2008-0460
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0460
Description:
 Cross-site scripting (XSS) vulnerability in api.php in (1) MediaWiki 1.11
 through 1.11.0rc1, 1.10 through 1.10.2, 1.9 through 1.9.4, and 1.8; and (2)
 the BotQuery extension for MediaWiki 1.7 and earlier; when Internet
 Explorer is used, allows remote attackers to inject arbitrary web script or
 HTML via unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS: 

Patches_mediawiki:
upstream_mediawiki: needs-triage
dapper_mediawiki: ignored (reached end-of-life)
edgy_mediawiki: needed (reached end-of-life)
feisty_mediawiki: needed (reached end-of-life)
gutsy_mediawiki: needed (reached end-of-life)
hardy_mediawiki: not-affected (1:1.11.1-1)
intrepid_mediawiki: not-affected (1:1.11.1-1)
jaunty_mediawiki: not-affected (1:1.11.1-1)
karmic_mediawiki: not-affected (1:1.11.1-1)
devel_mediawiki: not-affected (1:1.11.1-1)