Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-36675

Опубликовано: 26 июн. 2023
Источник: debian
EPSS Низкий

Описание

An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, and 1.39.x before 1.39.4. BlockLogFormatter.php in BlockLogFormatter allows XSS in the partial blocks feature.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
mediawikifixed1:1.39.4-1package
mediawikinot-affectedbusterpackage

Примечания

  • https://gerrit.wikimedia.org/r/c/mediawiki/core/+/921452

  • https://phabricator.wikimedia.org/T332889

EPSS

Процентиль: 71%
0.00687
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2023-36675

CVSS3: 6.1
ubuntu
почти 2 года назад

An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, and 1.39.x before 1.39.4. BlockLogFormatter.php in BlockLogFormatter allows XSS in the partial blocks feature.

redhat логотип

CVE-2023-36675

CVSS3: 3.5
redhat
почти 2 года назад

An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, and 1.39.x before 1.39.4. BlockLogFormatter.php in BlockLogFormatter allows XSS in the partial blocks feature.

nvd логотип

CVE-2023-36675

CVSS3: 6.1
nvd
почти 2 года назад

An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, and 1.39.x before 1.39.4. BlockLogFormatter.php in BlockLogFormatter allows XSS in the partial blocks feature.

redos логотип

ROS-20240404-12

CVSS3: 6.1
redos
около 1 года назад

Уязвимость mediawiki

github логотип

GHSA-q7gg-775p-p35h

CVSS3: 6.1
github
почти 2 года назад

An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, 1.39.x before 1.39.4, and 1.40.x before 1.40.1. BlockLogFormatter.php in BlockLogFormatter allows XSS in the partial blocks feature.

EPSS

Процентиль: 71%
0.00687
Низкий