Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-pmh9-hwq5-vvpj

Опубликовано: 22 дек. 2023
Источник: github
Github: Не прошло ревью
CVSS3: 6.1

Описание

An issue was discovered in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. In includes/logging/RightsLogFormatter.php, group-*-member messages can result in XSS on Special:log/rights.

An issue was discovered in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. In includes/logging/RightsLogFormatter.php, group-*-member messages can result in XSS on Special:log/rights.

Ссылки

EPSS

Процентиль: 55%
0.00331
Низкий

6.1 Medium

CVSS3

CVE ID

CVE-2023-51704

Дефекты

CWE-79

Связанные уязвимости

ubuntu логотип

CVE-2023-51704

CVSS3: 6.1
ubuntu
около 2 лет назад

An issue was discovered in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. In includes/logging/RightsLogFormatter.php, group-*-member messages can result in XSS on Special:log/rights.

redhat логотип

CVE-2023-51704

CVSS3: 6.3
redhat
около 2 лет назад

An issue was discovered in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. In includes/logging/RightsLogFormatter.php, group-*-member messages can result in XSS on Special:log/rights.

nvd логотип

CVE-2023-51704

CVSS3: 6.1
nvd
около 2 лет назад

An issue was discovered in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. In includes/logging/RightsLogFormatter.php, group-*-member messages can result in XSS on Special:log/rights.

debian логотип

CVE-2023-51704

CVSS3: 6.1
debian
около 2 лет назад

An issue was discovered in MediaWiki before 1.35.14, 1.36.x through 1. ...

fstec логотип

BDU:2024-02778

CVSS3: 6.1
fstec
около 2 лет назад

Уязвимость файла include/logging/RightsLogFormatter.php программного средства для реализации гипертекстовой среды MediaWiki, позволяющая нарушителю осуществлять межсайтовые сценарные атаки (XSS)

EPSS

Процентиль: 55%
0.00331
Низкий

6.1 Medium

CVSS3

CVE ID

CVE-2023-51704

Дефекты

CWE-79