CVE-2014-9479

2015-01-16T16:59:00
ID CVE-2014-9479
Type cve
Reporter cve@mitre.org
Modified 2015-01-20T14:25:00

Description

Cross-site scripting (XSS) vulnerability in the preview in the TemplateSandbox extension for MediaWiki allows remote attackers to inject arbitrary web script or HTML via the text parameter to Special:TemplateSandbox.