Description
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.2 allows remote attackers to inject arbitrary web script or HTML via crafted Cascading Style Sheets (CSS) comments, aka "CSS injection vulnerability."
Remediation
References
Related Vulnerabilities
PHP Incorrect Calculation of Buffer Size Vulnerability (CVE-2008-0599)
Squid Improper Input Validation Vulnerability (CVE-2016-2569)
WordPress Plugin Delightful Downloads Directory Traversal (1.6.6)
TYPO3 Insertion of Sensitive Information into Log File Vulnerability (CVE-2022-31047)
Oracle Application Server Other Vulnerability (CVE-2001-0591)