Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:4 a.m.9 views

CVE-2023-37302

An issue was discovered in SiteLinksView.php in Wikibase in MediaWiki through 1.39.3. There is XSS via a crafted badge title attribute. This is also related to lack of escaping in wbTemplate from resources/wikibase/templates.js for quotes which can be in a title attribute...

6.1CVSS5.6AI score0.00689EPSS
Exploits1
OSV
OSV
added 2024/03/06 10:59 a.m.25 views

BIT-MEDIAWIKI-2023-37302

An issue was discovered in SiteLinksView.php in Wikibase in MediaWiki through 1.39.3. There is XSS via a crafted badge title attribute. This is also related to lack of escaping in wbTemplate from resources/wikibase/templates.js for quotes which can be in a title attribute...

6.1CVSS5.8AI score0.00689EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2023/06/30 6:31 p.m.24 views

MediaWiki Cross-site Scripting vulnerability

An issue was discovered in SiteLinksView.php in Wikibase in MediaWiki through 1.39.3. There is XSS via a crafted badge title attribute. This is also related to lack of escaping in wbTemplate from resources/wikibase/templates.js for quotes which can be in a title attribute...

6.1CVSS6.2AI score0.00689EPSS
Exploits1References5Affected Software1
UbuntuCve
UbuntuCve
added 2023/06/30 12:0 a.m.17 views

CVE-2023-37302

An issue was discovered in SiteLinksView.php in Wikibase in MediaWiki through 1.39.3. There is XSS via a crafted badge title attribute. This is also related to lack of escaping in wbTemplate from resources/wikibase/templates.js for quotes which can be in a title attribute...

6.1CVSS6.3AI score0.00689EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/06/30 12:0 a.m.5 views

MediaWiki 跨站脚本漏洞

MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. The product can be used to deploy internal knowledge management and content management systems. A security vulnerability exists in MediaWiki 1.39.3 and earlier versions, which stems from a...

6.1CVSS5.7AI score0.00689EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/06/30 12:0 a.m.15 views

CVE-2023-37302

An issue was discovered in SiteLinksView.php in Wikibase in MediaWiki through 1.39.3. There is XSS via a crafted badge title attribute. This is also related to lack of escaping in wbTemplate from resources/wikibase/templates.js for quotes which can be in a title attribute...

6AI score0.00689EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/06/30 12:0 a.m.4 views

PT-2023-25893 · Mediawiki +1 · Mediawiki +1

Name of the Vulnerable Software and Affected Versions: MediaWiki versions through 1.39.3 Description: An issue was discovered in SiteLinksView.php in Wikibase. There is XSS via a crafted badge title attribute. This is also related to lack of escaping in wbTemplate from...

9.8CVSS5.6AI score0.22699EPSS
Exploits27References110
Rows per page
Query Builder