4 matches found
CVE-2023-45359
An issue was discovered in the Vector Skin component for MediaWiki before 1.39.5 and 1.40.x before 1.40.1. vector-toc-toggle-button-label is not escaped, but should be, because the line param can have markup...
CVE-2023-45359
An issue was discovered in the Vector Skin component for MediaWiki before 1.39.5 and 1.40.x before 1.40.1. vector-toc-toggle-button-label is not escaped, but should be, because the line param can have markup...
CVE-2023-45359
CVE-2023-45359 affects MediaWiki’s Vector Skin: vector-toc-toggle-button-label is not escaped, allowing markup in the line parameter. Affected: Vector Skin for MediaWiki before 1.39.5 and 1.40.x before 1.40.1. Descriptions in connected docs do not provide exploitation details or a confirmed patch...
CVE-2023-45359
An issue was discovered in the Vector Skin component for MediaWiki before 1.39.5 and 1.40.x before 1.40.1. vector-toc-toggle-button-label is not escaped, but should be, because the line param can have markup...