7 matches found
EUVD-2020-7247
Malware in sbrugna...
CVE-2020-15179
The ScratchSig extension for MediaWiki before version 1.0.1 allows stored Cross-Site Scripting. Using...
CVE-2020-15179
The ScratchSig extension for MediaWiki before version 1.0.1 allows stored Cross-Site Scripting. Using tag inside tag, attackers with edit permission can execute scripts on visitors' browser. With MediaWiki JavaScript API, this can potentially lead to privilege escalation and/or account takeover...
CVE-2020-15179
The ScratchSig extension for MediaWiki before version 1.0.1 allows stored Cross-Site Scripting. Using tag inside tag, attackers with edit permission can execute scripts on visitors' browser. With MediaWiki JavaScript API, this can potentially lead to privilege escalation and/or account takeover...
Cross site scripting
The ScratchSig extension for MediaWiki before version 1.0.1 allows stored Cross-Site Scripting. Using tag inside tag, attackers with edit permission can execute scripts on visitors' browser. With MediaWiki JavaScript API, this can potentially lead to privilege escalation and/or account takeover...
CVE-2020-15179 HTML Injection in ScratchSig
The ScratchSig extension for MediaWiki before version 1.0.1 allows stored Cross-Site Scripting. Using tag inside tag, attackers with edit permission can execute scripts on visitors' browser. With MediaWiki JavaScript API, this can potentially lead to privilege escalation and/or account takeover...
CVE-2020-15179
The CVE-2020-15179 issue affects the ScratchSig extension for MediaWiki prior to 1.0.1. It enables stored Cross-Site Scripting through a script tag inside a tag, allowing attackers with edit permission to run scripts in visitors’ browsers, potentially leading to privilege escalation or account t...