CVE-2020-15179
The CVE-2020-15179 issue affects the ScratchSig extension for MediaWiki prior to 1.0.1. It enables stored Cross-Site Scripting through a script tag inside a tag, allowing attackers with edit permission to run scripts in visitors’ browsers, potentially leading to privilege escalation or account t...