5 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-45472
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In MediaWiki through 1.37, XSS can occur in Wikibase because an external identifier property can have a URL format that includes a $1 formatter substitution...
MediaWiki <= 1.37 Multiple Vulnerabilities - Linux
MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mediawiki:mediawiki"; ifdescripti...
Fedora: Security Advisory for mediawiki (FEDORA-2021-bef1126908)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2021-45472
In MediaWiki through 1.37, XSS can occur in Wikibase because an external identifier property can have a URL format that includes a $1 formatter substitution marker, and the javascript: URL scheme among others can be used...
CVE-2021-45472
CVE-2021-45472 : In MediaWiki up to 1.37 with Wikibase, an external identifier property can contain a URL format that includes a $1 formatter substitution marker, allowing use of javascript: URLs and similar schemes for XSS. The confirmed context across connected sources specifies affected softwa...