PT-2021-19421 · Mediawiki +1 · Commentbox Extension +2
Name of the Vulnerable Software and Affected Versions: MediaWiki versions through 1.35.2 CommentBox extension for MediaWiki versions through 1.35.2 Description: An issue was discovered that allows a malicious actor to introduce XSS payloads into various layers via crafted configuration variables...