3 matches found
DEBIAN-CVE-2021-30154
An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. On Special:NewFiles, all the mediastatistics-header- messages are output in HTML unescaped, leading to XSS...
UBUNTU-CVE-2021-30154
An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. On Special:NewFiles, all the mediastatistics-header- messages are output in HTML unescaped, leading to XSS...
PT-2021-3354 · Mediawiki +1 · Mediawiki +1
Name of the Vulnerable Software and Affected Versions: MediaWiki versions prior to 1.31.12 MediaWiki versions 1.32.x through 1.35.x before 1.35.2 Description: An issue in MediaWiki leads to XSS due to the output of mediastatistics-header- messages in HTML unescaped on Special:NewFiles. This could...