Description

Cross-site scripting (XSS) vulnerability in MediaWiki 1.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the page move template.

Remediation

References

CVE-2005-2396

Related Vulnerabilities

WordPress Plugin WP Table Builder-WordPress Table Cross-Site Scripting (1.3.9)

Drupal Core 6.x Multiple Security Bypass Vulnerabilities (6.0 - 6.4)

Liferay DXP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-42132)

WordPress Plugin Shoppable Images Multiple Vulnerabilities (1.2.3)

WordPress Plugin Broadcast Live Video-Live Streaming:HTML5, WebRTC, HLS, RTSP, RTMP Cross-Site Scripting (4.27.2)

Severity

Medium

Classification

CVE-2005-2396

Tags

Missing Update Known Vulnerabilities