Description

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.5.8 and 1.4.15 allows remote attackers to inject arbitrary web script or HTML via crafted encoded links.

Remediation

References

CVE-2006-1498

Related Vulnerabilities

Plone CMS CVE-2011-2528 Vulnerability (CVE-2011-2528)

ZenCart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-6578)

WordPress Plugin Gravity Forms SQL Injection (1.9.3.5)

WordPress Plugin Advanced Access Manager Security Bypass (3.2.1)

Moodle 7PK - Security Features Vulnerability (CVE-2015-5267)

Severity

Medium

Classification

CVE-2006-1498

Tags

Missing Update Known Vulnerabilities