Lucene search

K
cvelistDebianCVELIST:CVE-2017-0372
HistoryApr 06, 2017 - 12:00 a.m.

CVE-2017-0372 Parameters injection in SyntaxHighlight results in multiple vulnerabilities

2017-04-0600:00:00
debian
www.cve.org

9.7 High

AI Score

Confidence

High

0.835 High

EPSS

Percentile

98.5%

Parameters injection in the SyntaxHighlight extension of Mediawiki before 1.23.16, 1.27.3 and 1.28.2 might result in multiple vulnerabilities.

CNA Affected

[
  {
    "product": "mediawiki (SyntaxHighlight extension)",
    "vendor": "mediawiki",
    "versions": [
      {
        "status": "affected",
        "version": "n/a"
      }
    ]
  }
]

9.7 High

AI Score

Confidence

High

0.835 High

EPSS

Percentile

98.5%