exploitDog

GHSA-48pv-xvcw-jg8h

Опубликовано: 25 дек. 2021

Источник: github

Github: Не прошло ревью

Описание

In MediaWiki through 1.37, the Special:ImportFile URI (aka FileImporter) allows XSS, as demonstrated by the clientUrl parameter.

In MediaWiki through 1.37, the Special:ImportFile URI (aka FileImporter) allows XSS, as demonstrated by the clientUrl parameter.

Ссылки

EPSS

Процентиль: 49%

0.00256

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2021-45474

CVSS3: 6.1

ubuntu

около 4 лет назад

In MediaWiki through 1.37, the Special:ImportFile URI (aka FileImporter) allows XSS, as demonstrated by the clientUrl parameter.

CVE-2021-45474

CVSS3: 6.1

redhat

около 4 лет назад

In MediaWiki through 1.37, the Special:ImportFile URI (aka FileImporter) allows XSS, as demonstrated by the clientUrl parameter.

CVE-2021-45474

CVSS3: 6.1

nvd

около 4 лет назад

In MediaWiki through 1.37, the Special:ImportFile URI (aka FileImporter) allows XSS, as demonstrated by the clientUrl parameter.

EPSS

Процентиль: 49%

0.00256

Низкий

CVE ID

Дефекты

CWE-79