Lucene search
GoogleOSV:CVE-2020-26120HistorySep 27, 2020 - 9:15 p.m.
CVE-2020-26120
2020-09-2721:15:13
Google
osv.dev
2
XSS exists in the MobileFrontend extension for MediaWiki before 1.34.4 because section.line is mishandled during regex section line replacement from PageGateway. Using crafted HTML, an attacker can elicit an XSS attack via jQuery’s parseHTML method, which can cause image callbacks to fire even without the element being appended to the DOM.
Related
nvd
nvd
CVE-2020-26120
2020-09-27 21:15:13
prion
prion
Cross site scripting
2020-09-27 21:15:00
cvelist
cvelist
CVE-2020-26120
2020-09-27 20:07:52
cve
cve
CVE-2020-26120
2020-09-27 21:15:13
redhatcve
redhatcve
CVE-2020-26120
2020-12-02 18:47:01
osv
osv
BIT-mediawiki-2020-26120
2024-03-06 11:13:52
fedora
fedora
[SECURITY] Fedora 33 Update: php-oojs-oojs-ui-0.39.3-1.fc33
2020-12-14 00:59:10
[SECURITY] Fedora 33 Update: php-wikimedia-assert-0.5.0-1.fc33
2020-12-14 00:59:10
[SECURITY] Fedora 33 Update: mediawiki-1.35.0-1.fc33
2020-12-14 00:59:10
openvas
openvas
Fedora: Security Advisory for php-wikimedia-assert (FEDORA-2020-a4802c53d9)
2020-12-14 00:00:00
Fedora: Security Advisory for mediawiki (FEDORA-2020-a4802c53d9)
2020-12-14 00:00:00
Fedora: Security Advisory for php-oojs-oojs-ui (FEDORA-2020-a4802c53d9)
2020-12-14 00:00:00
nessus
nessus