5 matches found
MediaWiki index.php 'uselang' Parameter XSS
The version of MediaWiki running on the remote host is affected by a cross-site scripting vulnerability due to a failure to properly sanitize user-supplied input to the 'uselang' parameter in the 'index.php' script. An attacker can exploit this to inject arbitrary HTML and script code into a user...
MediaWiki < 1.17.5, 1.18.x < 1.18.4, 1.19.x < 1.19.1 'uselang' Parameter XSS Vulnerability - Active Check
MediaWiki is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2012-2698
Cross-site scripting XSS vulnerability in the outputPage function in includes/SkinTemplate.php in MediaWiki before 1.17.5, 1.18.x before 1.18.4, and 1.19.x before 1.19.1 allows remote attackers to inject arbitrary web script or HTML via the uselang parameter to index.php/Mainpage...
CVE-2012-2698
Cross-site scripting XSS vulnerability in the outputPage function in includes/SkinTemplate.php in MediaWiki before 1.17.5, 1.18.x before 1.18.4, and 1.19.x before 1.19.1 allows remote attackers to inject arbitrary web script or HTML via the uselang parameter to index.php/Mainpage...
CVE-2012-2698
creationtimestamp| type| source ---|---|--- 2012-06-17 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/37404...