Description
Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw allowing to evade SVG filter using default attribute values in DTD declaration.
Remediation
References
Related Vulnerabilities
OpenSSL Other Vulnerability (CVE-2002-0655)
Moodle Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2024-48896)
Wordpress Plugin Backup Migration CVE-2023-6553 Vulnerability (CVE-2023-6553)
WordPress Plugin SEO Tools 'file' Parameter Directory Traversal (3.1.7)
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2006-0369)