3 matches found
EUVD-2014-9296
Malware in sbrugna...
MediaWiki Listings Extension Cross-Site Scripting Vulnerability
MediaWiki is a Wiki program. The MediaWiki Listings page fails to adequately filter the 'name' or 'url' parameter, which can be exploited by remote attackers to inject arbitrary web script or HTML...
CVE-2014-9477
Multiple cross-site scripting XSS vulnerabilities in the Listings extension for MediaWiki allow remote attackers to inject arbitrary web script or HTML via the 1 name or 2 url parameter...