Mediawiki : Security Vulnerabilities, CVEs, Published In January 2007
Cross-site scripting (XSS) vulnerability in the AJAX module in MediaWiki before 1.6.9, 1.7 before 1.7.2, 1.8 before 1.8.3, and 1.9 before 1.9.0rc2, when wgUseAjax is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
5.1
EPSS Score
85.07%
Published
2007-01-11
Updated
2017-07-29
1 vulnerabilities found