2 matches found
CVE-2015-6734
Cross-site scripting XSS vulnerability in contrib/cssgen.php in the GeSHi, as used in the SyntaxHighlightGeSHi extension and MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2015-6734
CVE-2015-6734 is a cross-site scripting vulnerability in contrib/cssgen.php of GeSHi used by MediaWiki. Affected are MediaWiki versions: <1.23.10, 1.24.x <1.24.3, and 1.25.x