EPSS
Percentile
61.2%
It was discovered that MediaWiki, a wiki engine, did not sufficiently filter CSS in uploaded SVG files, allowing for cross site scripting.
bugs.archlinux.org/task/42161
bugzilla.wikimedia.org/show_bug.cgi?id=69008
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7199
lists.wikimedia.org/pipermail/mediawiki-announce/2014-September/000161.html