MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-35474)

Description

In MediaWiki before 1.35.1, the combination of Html::rawElement and Message::text leads to XSS because the definition of MediaWiki:recentchanges-legend-watchlistexpiry can be changed onwiki so that the output is raw HTML.

Remediation

References

CVE-2020-35474

Related Vulnerabilities

WordPress Plugin Bitcoin Faucet Cross-Site Scripting (1.0.12)

WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2018-3245)

Java Unspesificed Vulnerability (CVE-2018-3157)

PHP Other Vulnerability (CVE-2006-1494)

silverstripeCMS Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-12246)

Severity

Medium

Classification

CVE-2020-35474 CWE-707 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N