Description

The checkCss function in includes/Sanitizer.php in the wikitext parser in MediaWiki before 1.16.3 does not properly validate Cascading Style Sheets (CSS) token sequences, which allows remote attackers to conduct cross-site scripting (XSS) attacks or obtain sensitive information by using the \2f\2a and \2a\2f hex strings to surround CSS comments.

Remediation

References

CVE-2011-1579

Related Vulnerabilities

WordPress Plugin Broken Link Manager SQL Injection (0.6.5)

WordPress Plugin iThemes Security (formerly Better WP Security) Multiple Cross-Site Scripting Vulnerabilities (3.4.3)

WordPress Plugin File Manager Cross-Site Request Forgery (3.0.1)

Magento Improper Authentication Vulnerability (CVE-2019-8108)

Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5594)

Severity

Medium

Classification

CVE-2011-1579 CWE-20

Tags

Missing Update Known Vulnerabilities