CVEs affecting projects tracked on Release Alert, from NVD & OSV.
CVE-2013-2114 — MEDIUM severity vulnerability | Release Alert
CVE-2013-2114
6.8
MEDIUMCVSS v2
Published
November 18, 2013
Affected
2 projects
Assigned by
Red Hat
Severity scale
010
Description
Unrestricted file upload vulnerability in the chunk upload API in MediaWiki 1.19 through 1.19.6 and 1.20.x before 1.20.6 allows remote attackers to execute arbitrary code by uploading a file with an executable extension.
GitHub🌻 The collaborative editing software that runs Wikipedia. Mirror from https://gerrit.wikimedia.org/g/mediawiki/core. See https://mediawiki.org/wiki/Developer_access for contributing.