Lucene search
K

5 matches found

BDU FSTEC
BDU FSTEC
added 2025/05/28 12:0 a.m.4 views

The vulnerability in the HTMLMultiSelectField.Php file of the MediaWiki software environment allows a hacker to execute cross-site scripting attacks.

The vulnerability of the HTMLMultiSelectField.Php file, a software component used for implementing the hypertext environment in MediaWiki, is related to the lack of protective measures taken for the structure of the web page. Exploiting this vulnerability could allow an attacker to carry out a...

5.3CVSS5.1AI score0.00362EPSS
Exploits0References4Affected Software3
Snyk
Snyk
added 2025/04/10 6:49 p.m.1 views

Cross-site Scripting (XSS)

Overview mediawiki/core is a Free software wiki application developed by the Wikimedia Foundation and others. Note: This package is not maintained on Packagist anymore, but newer releases exist. Affected versions of this package are vulnerable to Cross-site Scripting XSS through the...

6.1CVSS5.3AI score0.00362EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/04/10 6:28 p.m.7 views

CVE-2025-3469 i18n XSS vulnerability in HTMLMultiSelectField when sections are used

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/htmlform/fields/HTMLMultiSelectField.Php. This issue affects MediaWiki: before 1.39.12, 1.42.6,...

6.6AI score0.00362EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/10 6:28 p.m.37 views

CVE-2025-3469 i18n XSS vulnerability in HTMLMultiSelectField when sections are used

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/htmlform/fields/HTMLMultiSelectField.Php. This issue affects MediaWiki: before 1.39.12, 1.42.6,...

0.00362EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/10 12:0 a.m.3 views

PT-2025-16014 · Mediawiki +2 · Mediawiki +2

Name of the Vulnerable Software and Affected Versions: MediaWiki versions prior to 1.39.12 MediaWiki versions prior to 1.42.6 MediaWiki versions prior to 1.43.1 Description: The issue is related to an Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting...

8.8CVSS5.8AI score0.00454EPSS
Exploits0References39
Rows per page
Query Builder