CVE-2017-8808
CVE-2017-8808 is a cross-site scripting vulnerability in MediaWiki prior to 1.27.4, 1.28.x prior to 1.28.3, and 1.29.x prior to 1.29.2 when $wgShowExceptionDetails is disabled and the browser uses non-standard URL escaping. Public advisories (e.g., Debian DSA-4036, Mageia MGASA-2017-0429, Arch Li...