Cross-site scripting (XSS) vulnerability in the Special:Block implementation in the getContribsLink function in SpecialBlockip.php in MediaWiki 1.14.0 and 1.15.0 allows remote attackers to inject arbitrary web script or HTML via the ip parameter.
Max CVSS
4.3
EPSS Score
0.28%
Published
2010-01-07
Updated
2017-08-17
1 vulnerabilities found