Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-20697

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00406EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/23 9:43 a.m.11 views

CVE-2024-23178

An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message...

5.4CVSS5.8AI score0.00406EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2024/04/10 12:0 a.m.5 views

The vulnerability of the Phonos extension of the programming environment for implementing the MediaWiki hypertext environment allows a hacker to perform cross-site scripting attacks.

The vulnerability of the Phonos extension for implementing the MediaWiki hypertext environment exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks via the...

5.5CVSS5.6AI score0.00406EPSS
Exploits1References4Affected Software2
OSV
OSV
added 2024/03/06 10:56 a.m.13 views

BIT-MEDIAWIKI-2024-23178

An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message...

5.4CVSS5.3AI score0.00406EPSS
Exploits1References3
NVD
NVD
added 2024/01/12 6:15 a.m.17 views

CVE-2024-23178

An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message...

5.4CVSS5.2AI score0.00406EPSS
Exploits1References2
OSV
OSV
added 2024/01/12 6:15 a.m.14 views

CVE-2024-23178

An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message...

5.4CVSS5.2AI score
Exploits0References2
Prion
Prion
added 2024/01/12 6:15 a.m.19 views

Design/Logic Flaw

An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message...

4.9CVSS6AI score0.00406EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/12 12:0 a.m.3 views

PT-2024-2680 · Mediawiki +2 · Mediawiki +2

Name of the Vulnerable Software and Affected Versions: MediaWiki versions prior to 1.40.2 Phonos extension in MediaWiki versions prior to 1.40.2 Description: The issue exists due to the lack of protection for the web page structure in the Phonos extension of MediaWiki. This allows a remote attack...

5.5CVSS6.1AI score0.00406EPSS
Exploits1References10
CNNVD
CNNVD
added 2024/01/12 12:0 a.m.2 views

MediaWiki Security Breach

MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. It can be used to deploy internal knowledge management and content management systems. A security vulnerability exists in MediaWiki versions prior to 1.40.2, which stems from a cross-site...

5.4CVSS5.8AI score0.00406EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/01/12 12:0 a.m.28 views

CVE-2024-23178

An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message...

5.4AI score0.00406EPSS
Exploits1References2
CVE
CVE
added 2024/01/12 12:0 a.m.47 views

CVE-2024-23178

The CVE-2024-23178 issue affects the Phonos extension for MediaWiki, specifically involving the PhonosButton.js component. Affected software: MediaWiki with Phonos extension prior to version 1.40.2. Root cause: i18n-based cross-site scripting (XSS) vulnerability exposed via the phonos-purge-neede...

5.4CVSS5.3AI score0.00406EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/12 12:0 a.m.4 views

CVE-2024-23178

An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message...

5.2AI score0.00406EPSS
Exploits1References2
Rows per page
Query Builder