Description

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.5 allows remote attackers to inject arbitrary web script via HTML attributes in page templates.

Remediation

References

CVE-2005-1888

Related Vulnerabilities

XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-46243)

WordPress Plugin Ultimate Membership Pro Cross-Site Request Forgery (8.6.2)

Nginx Integer Overflow or Wraparound Vulnerability (CVE-2017-7529)

WordPress Plugin ImageInject Multiple Vulnerabilities (1.15)

WordPress Plugin Comments-wpDiscuz Cross-Site Request Forgery (7.3.3)

Severity

Medium

Classification

CVE-2005-1888

Tags

Missing Update Known Vulnerabilities