Description
Cross-site scripting (XSS) vulnerability in the API pretty-printing mode in MediaWiki 1.8.0 through 1.8.4, 1.9.0 through 1.9.3, 1.10.0 through 1.10.1, and the 1.11 development versions before 1.11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
MySQL CVE-2021-35602 Vulnerability (CVE-2021-35602)
WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (0.5.26)
Python Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2183)
WordPress Plugin Companion Auto Update Multiple Vulnerabilities (3.2.0)
WordPress Plugin Tickera-WordPress Event Ticketing Security Bypass (3.4.9.1)