CVE-2024-47612 XSS in Special:DataDump when displaying dump status

DataDump is a MediaWiki extension that provides dumps of wikis. Several interface messages are unescaped more specifically, datadump-table-column-queued, datadump-table-column-in-progress, datadump-table-column-completed, datadump-table-column-failed. If these messages are edited which requires t...

CVE-2024-34500

CVE-2024-34500 affects MediaWiki with the UnlinkedWikibase extension prior to certain versions: 1.39.6, 1.40.x before 1.40.2, and 1.41.x before 1.41.1. The issue is an XSS flaw triggered via interface messages where error text stored in the $err variable is not escaped before passing to Html::raw...

CVE-2024-34500

An issue was discovered in the UnlinkedWikibase extension in MediaWiki before 1.39.6, 1.40.x before 1.40.2, and 1.41.x before 1.41.1. XSS can occur through an interface message. Error messages in the $err var are not escaped before being passed to Html::rawElement in the getError function in the...

PT-2023-12796 · Qualcomm · Snapdragon +64

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves memory corruption in a modem due to the use of an out-of-range pointer offset while processing a qmi message. No information is...

Dillo < 0.8.4-rc1 Interface Message Format String

Binary data 2512.prm...