Description
Cross-site scripting (XSS) vulnerability in the BotQuery extension in MediaWiki 1.7.x and earlier before SVN 20070910 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a similar issue to CVE-2007-4828.
Remediation
References
Related Vulnerabilities
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6634)
Magento CVE-2019-8231 Vulnerability (CVE-2019-8231)
MediaWiki Other Vulnerability (CVE-2004-2152)
WordPress 5.3.x Multiple Vulnerabilities (5.3 - 5.3.13)
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-6113)