CVE-2005-4501

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2005-4501

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2005-4501.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2005-4501

Downstream

DEBIAN-CVE-2005-4501

Published

2005-12-22T21:03:00Z

Modified

2026-04-10T03:37:20.602321Z

Summary

[none]

Details

MediaWiki before 1.5.4 uses a hard-coded "internal placeholder string", which allows remote attackers to bypass protection against cross-site scripting (XSS) attacks and execute Javascript using inline style attributes, which are processed by Internet Explorer.

References

http://secunia.com/advisories/18219
http://secunia.com/advisories/18717
http://www.vupen.com/english/advisories/2005/3059
http://secunia.com/advisories/18219
http://www.mediawiki.org/wiki/Download
http://www.securityfocus.com/bid/16032
http://lists.suse.com/archive/suse-security-announce/2006-Feb/0001.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/23882

CVE-2005-4501

Affected packages