CVE-2005-4031
Publication date 6 December 2005
Last updated 24 July 2024
Ubuntu priority
Eval injection vulnerability in MediaWiki 1.5.x before 1.5.3 allows remote attackers to execute arbitrary PHP code via the "user language option," which is used as part of a dynamic class name that is processed using the eval function.