CVE-2011-0003 — mediawiki - clickjacking

Description

MediaWiki before 1.16.1, when user or site JavaScript or CSS is enabled, allows remote attackers to conduct clickjacking attacks via unspecified vectors.

How to fix CVE-2011-0003

To remediate CVE-2011-0003, upgrade the affected package to a fixed version below.

Debian/mediawiki—upgrade to 1:1.15.5-2 or later
Debian/mediawiki—upgrade to 1:1.15.5-2 or later

Is CVE-2011-0003 being exploited?

Low — EPSS is 0.9%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

from 0, < 1:1.15.5-2
from 0, < 1:1.15.5-2

References (1)

ADVISORYsecurity-tracker.debian.org/tracker/CVE-2011-0003