Description
Cross-site scripting (XSS) vulnerability in MediaWiki 1.13.1, 1.12.0, and possibly other versions before 1.13.2 allows remote attackers to inject arbitrary web script or HTML via the useskin parameter to an unspecified component.
Remediation
References
Related Vulnerabilities
XWikiplatform Incorrect Authorization Vulnerability (CVE-2024-55662)
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0245)
MySQL CVE-2022-21304 Vulnerability (CVE-2022-21304)
WordPress Plugin Nested Pages Multiple Vulnerabilities (3.1.15)
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-39112)