Lucene search
PRIOn knowledge basePRION:CVE-2020-26120HistorySep 27, 2020 - 9:15 p.m.
Cross site scripting
2020-09-2721:15:00
PRIOn knowledge base
www.prio-n.com
4
XSS exists in the MobileFrontend extension for MediaWiki before 1.34.4 because section.line is mishandled during regex section line replacement from PageGateway. Using crafted HTML, an attacker can elicit an XSS attack via jQuery’s parseHTML method, which can cause image callbacks to fire even without the element being appended to the DOM.
Related
osv
osv
CVE-2020-26120
2020-09-27 21:15:13
BIT-mediawiki-2020-26120
2024-03-06 11:13:52
nvd
nvd
CVE-2020-26120
2020-09-27 21:15:13
cve
cve
CVE-2020-26120
2020-09-27 21:15:13
redhatcve
redhatcve
CVE-2020-26120
2020-12-02 18:47:01
cvelist
cvelist
CVE-2020-26120
2020-09-27 20:07:52
fedora
fedora
[SECURITY] Fedora 33 Update: php-oojs-oojs-ui-0.39.3-1.fc33
2020-12-14 00:59:10
[SECURITY] Fedora 33 Update: php-wikimedia-assert-0.5.0-1.fc33
2020-12-14 00:59:10
[SECURITY] Fedora 33 Update: mediawiki-1.35.0-1.fc33
2020-12-14 00:59:10
openvas
openvas
Fedora: Security Advisory for php-wikimedia-assert (FEDORA-2020-a4802c53d9)
2020-12-14 00:00:00
Fedora: Security Advisory for mediawiki (FEDORA-2020-a4802c53d9)
2020-12-14 00:00:00
Fedora: Security Advisory for php-oojs-oojs-ui (FEDORA-2020-a4802c53d9)
2020-12-14 00:00:00
nessus
nessus