###############################################################################
# OpenVAS Vulnerability Test
# $Id: secpod_mediawiki_mult_vuln_dec08.nasl 737 2008-12-23 17:15:29Z dec $
#
# MediaWiki Multiple Vulnerabilities Dec08
#
# Authors:
# Sujit Ghosal <sghosal@secpod.com>
#
# Copyright (c) 2008 SecPod, http://www.secpod.com
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

if(description)
{
  script_id(900421);
  script_version("$Revision: 1.0 $");
  script_cve_id("CVE-2008-5249", "CVE-2008-5250", "CVE-2008-5252");
  script_bugtraq_id(32844);
  script_name(english:"MediaWiki Multiple Vulnerabilities Dec08");
  desc["english"] = "

  Overview: This host is running MediaWiki and is prone to Multiple
  Vulnerabilities.

  Vulnerability Insight:
  The flaws are due to,
  - input is not properly sanitised before being returned to the user
  - input related to uploads is not properly sanitised before being used
  - SVG scripts are not properly sanitised before being used
  - the application allows users to perform certain actions via HTTP requests
    without performing any validity checks to verify the requests.

  Impact:
  Successful exploitation will let the attacker to execute arbitrary codes in
  the context of the web application and execute cross site scripting attacks.

  Affected Software/OS:
  MediaWiki version 1.13.0 to 1.13.2
  MediaWiki version 1.12.x to 1.12.1
  MediaWiki versions prior to 1.6.11

  Fix:
  Upgrade to the latest versions 1.13.3, 1.12.2 or 1.6.11.
  http://www.mediawiki.org/wiki/Download

  References:
  http://secunia.com/advisories/33133

  CVSS Score:
    CVSS Base Score     :  5.8 (AV:N/AC:M/Au:NR/C:N/I:P/A:P)
    CVSS Temporal Score :  4.3
  Risk factor: Medium";

  script_description(english:desc["english"]);
  script_summary(english:"Check for the version of MediaWiki");
  script_category(ACT_GATHER_INFO);
  script_copyright(english:"Copyright (C) 2008 SecPod");
  script_family(english:"Web application abuses");
  script_dependencies("secpod_mediawiki_detect.nasl");
  script_require_keys("MediaWiki/Version");
  exit(0);
}


include("http_func.inc");
include("version_func.inc");

port = get_http_port(default:80);
if(!port){
  port = 80;
}

wikiVer = get_kb_item("MediaWiki/Version");
if(!wikiVer){
  exit(0);
}

if(version_in_range(version:wikiVer, test_version:"1.13.0", test_version2:"1.13.2") ||
   version_in_range(version:wikiVer, test_version:"1.12.0", test_version2:"1.12.1") ||
   version_is_less_equal(version:wikiVer, test_version:"1.6.10")){
  security_warning(port);
}