Description

Cross-site scripting (XSS) vulnerability in MediaWiki 1.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the page move template.

Remediation

References

CVE-2005-2396

Related Vulnerabilities

WordPress Plugin Efence Multiple Cross-Site Scripting Vulnerabilities (1.3.2)

WordPress Plugin WP-Lister Lite for eBay Directory Traversal (2.0.20)

Python Integer Overflow or Wraparound Vulnerability (CVE-2018-20406)

WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Security Bypass (0.1.0.24)

WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker Multiple Vulnerabilities (8.0.8)

Severity

Medium

Classification

CVE-2005-2396

Tags

Missing Update Known Vulnerabilities