2 matches found
CVE-2019-19708
The VisualEditor extension through 1.34 for MediaWiki allows XSS via pasted content containing an element with a data-ve-clipboard-key attribute...
CVE-2019-19708
The CVE-2019-19708 issue affects the VisualEditor extension for MediaWiki up to version 1.34. The vulnerability arises from improper handling of pasted content, allowing cross-site scripting (XSS) through an element containing a data-ve-clipboard-key attribute. Affected component: VisualEditor in...