Lucene search
MitreCVELIST:CVE-2024-23173HistoryJan 12, 2024 - 12:00 a.m.
CVE-2024-23173
2024-01-1200:00:00
mitre
www.cve.org
cargo extension
xss
mediawiki
special:drilldown
cargoappliedfilter.php
0.0005 Low
EPSS
Percentile
17.1%
An issue was discovered in the Cargo extension in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. The Special:Drilldown page allows XSS via artist, album, and position parameters because of applied filter values in drilldown/CargoAppliedFilter.php.
Related
osv
osv
CVE-2024-23173
2024-01-12 05:15:10
BIT-mediawiki-2024-23173
2024-03-06 10:56:40
prion
prion
Design/Logic Flaw
2024-01-12 05:15:00
nvd
nvd
CVE-2024-23173
2024-01-12 05:15:10
cve
cve
CVE-2024-23173
2024-01-12 05:15:10
redos
redos
ROS-20240409-11
2024-04-09 00:00:00