Lucene search

K
cvelistDebianCVELIST:CVE-2017-8808
HistoryNov 15, 2017 - 8:00 a.m.

CVE-2017-8808

2017-11-1508:00:00
debian
www.cve.org

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.4%

MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has XSS when the $wgShowExceptionDetails setting is false and the browser sends non-standard URL escaping.

CNA Affected

[
  {
    "product": "MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2"
      }
    ]
  }
]

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.4%