Description
An issue was discovered in the CommentBox extension for MediaWiki through 1.35.2. Via crafted configuration variables, a malicious actor could introduce XSS payloads into various layers.
Remediation
References
Related Vulnerabilities
WordPress Plugin PAYPAL CURRENCY CONVERTER BASIC FOR WOOCOMMERCE Arbitrary File Disclosure (1.3)
WordPress Plugin Import Export WordPress Users Security Bypass (1.3.8)
Mailman Other Vulnerability (CVE-2002-0855)
WordPress Plugin simple sort&search Cross-Site Scripting (0.0.3)
WordPress Plugin Download Manager Cross-Site Scripting (3.2.46)