Description
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.19, 1.22.x before 1.22.11, and 1.23.x before 1.23.4 allows remote attackers to inject arbitrary web script or HTML via a crafted SVG file.
Remediation
References
Related Vulnerabilities
WordPress Plugin Elementor Website Builder Arbitrary File Upload (2.7.4)
WordPress Plugin SpamTask Arbitrary File Upload (1.3.6)
WordPress Plugin All-In-One Security (AIOS)-Security and Firewall Cross-Site Request Forgery (5.1.0)
WordPress Plugin Autoptimize Multiple Vulnerabilities (2.7.6)
AngularJS Inefficient Regular Expression Complexity Vulnerability (CVE-2023-26116)