exploitDog

GHSA-mmf2-8r78-pm42

Опубликовано: 05 окт. 2024

Источник: github

Github: Не прошло ревью

CVSS4: 6.9

CVSS3: 4.8

Описание

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Apex skin allows Stored XSS.This issue affects Mediawiki - Apex skin: from 1.39.X before 1.39.9, from 1.41.X before 1.41.3, from 1.42.X before 1.42.2.

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Apex skin allows Stored XSS.This issue affects Mediawiki - Apex skin: from 1.39.X before 1.39.9, from 1.41.X before 1.41.3, from 1.42.X before 1.42.2.

Ссылки

EPSS

Процентиль: 65%

0.00486

Низкий

6.9 Medium

CVSS4

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2024-47840

CVSS3: 4.8

nvd

больше 1 года назад

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Apex skin allows Stored XSS.This issue affects Mediawiki - Apex skin: from 1.39.X before 1.39.9, from 1.41.X before 1.41.3, from 1.42.X before 1.42.2.

EPSS

Процентиль: 65%

0.00486

Низкий

6.9 Medium

CVSS4

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79