exploitDog

GHSA-6gx9-22p7-84wm

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki before 1.4.9 allow remote attackers to inject arbitrary web script or HTML via (1) <math> tags or (2) Extension or sections that "bypass HTML style attribute restrictions" that are intended to protect against XSS vulnerabilities in Internet Explorer clients.

Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki before 1.4.9 allow remote attackers to inject arbitrary web script or HTML via (1) <math> tags or (2) Extension or sections that "bypass HTML style attribute restrictions" that are intended to protect against XSS vulnerabilities in Internet Explorer clients.

Ссылки

EPSS

Процентиль: 50%

0.00268

Низкий

CVE ID

Связанные уязвимости

CVE-2005-3165

nvd

почти 20 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki before 1.4.9 allow remote attackers to inject arbitrary web script or HTML via (1) <math> tags or (2) Extension or <nowiki> sections that "bypass HTML style attribute restrictions" that are intended to protect against XSS vulnerabilities in Internet Explorer clients.

CVE-2005-3165

debian

почти 20 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki befor ...

EPSS

Процентиль: 50%

0.00268

Низкий

CVE ID