Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/06 3:3 a.m.5 views

CVE-2025-21612

TabberNeue is a MediaWiki extension that allows the wiki to create tabs. Prior to 2.7.2, TabberTransclude.php doesn't escape the user-supplied page name when outputting, so an XSS payload as the page name can be used here. This vulnerability is fixed in 2.7.2...

8.6CVSS5.6AI score0.00497EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/06 3:47 p.m.17 views

CVE-2025-21612 Cross-site Scripting in TabberTransclude in Extension:TabberNeue

TabberNeue is a MediaWiki extension that allows the wiki to create tabs. Prior to 2.7.2, TabberTransclude.php doesn't escape the user-supplied page name when outputting, so an XSS payload as the page name can be used here. This vulnerability is fixed in 2.7.2...

8.6CVSS0.00497EPSS
Exploits0References3
OSV
OSV
added 2025/01/06 3:47 p.m.7 views

CVE-2025-21612 Cross-site Scripting in TabberTransclude in Extension:TabberNeue

TabberNeue is a MediaWiki extension that allows the wiki to create tabs. Prior to 2.7.2, TabberTransclude.php doesn't escape the user-supplied page name when outputting, so an XSS payload as the page name can be used here. This vulnerability is fixed in 2.7.2...

8.6CVSS6AI score0.00497EPSS
Exploits0References5
Circl
Circl
added 2025/01/04 8:56 p.m.4 views

CVE-2025-21612

creationtimestamp| type| source ---|---|--- 2025-01-04 20:56:13+00:00| published-proof-of-concept| https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/security/advisories/GHSA-4x6x-8rm8-c37j 2025-01-06 15:49:55+00:00| seen|...

8.6CVSS5.7AI score0.00497EPSS
Exploits0References8
Rows per page
Query Builder