Mediawiki : Security Vulnerabilities, CVEs, Published In November 2017 (XSS)
MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has XSS when the $wgShowExceptionDetails setting is false and the browser sends non-standard URL escaping.
Max CVSS
6.1
EPSS Score
0.09%
Published
2017-11-15
Updated
2017-11-28
1 vulnerabilities found