DEBIAN-CVE-2014-5243
- Source
- https://security-tracker.debian.org/tracker/CVE-2014-5243
- Import Source
- https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2014-5243.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2014-5243
- Upstream
- Published
- 2014-08-22T17:55:02.907Z
- Modified
- 2025-11-14T04:01:26.286814Z
- Summary
- [none]
- Details
-
MediaWiki before 1.19.18, 1.20.x through 1.22.x before 1.22.9, and 1.23.x before 1.23.2 does not enforce an IFRAME protection mechanism for transcluded pages, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.
- References
Affected packages
Debian:11 / mediawiki
Package
- Name
- mediawiki
- Purl
- pkg:deb/debian/mediawiki?arch=source
Debian:12 / mediawiki
Package
- Name
- mediawiki
- Purl
- pkg:deb/debian/mediawiki?arch=source
Debian:13 / mediawiki
Package
- Name
- mediawiki
- Purl
- pkg:deb/debian/mediawiki?arch=source
Debian:14 / mediawiki
Package
- Name
- mediawiki
- Purl
- pkg:deb/debian/mediawiki?arch=source