12 matches found
EUVD-2024-20697
Malicious code in bioql PyPI...
CVE-2024-23178
An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message...
The vulnerability of the Phonos extension of the programming environment for implementing the MediaWiki hypertext environment allows a hacker to perform cross-site scripting attacks.
The vulnerability of the Phonos extension for implementing the MediaWiki hypertext environment exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks via the...
BIT-MEDIAWIKI-2024-23178
An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message...
CVE-2024-23178
An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message...
CVE-2024-23178
An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message...
Design/Logic Flaw
An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message...
PT-2024-2680 · Mediawiki +2 · Mediawiki +2
Name of the Vulnerable Software and Affected Versions: MediaWiki versions prior to 1.40.2 Phonos extension in MediaWiki versions prior to 1.40.2 Description: The issue exists due to the lack of protection for the web page structure in the Phonos extension of MediaWiki. This allows a remote attack...
MediaWiki Security Breach
MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. It can be used to deploy internal knowledge management and content management systems. A security vulnerability exists in MediaWiki versions prior to 1.40.2, which stems from a cross-site...
CVE-2024-23178
An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message...
CVE-2024-23178
The CVE-2024-23178 issue affects the Phonos extension for MediaWiki, specifically involving the PhonosButton.js component. Affected software: MediaWiki with Phonos extension prior to version 1.40.2. Root cause: i18n-based cross-site scripting (XSS) vulnerability exposed via the phonos-purge-neede...
CVE-2024-23178
An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message...