Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/CommentFormatter/CommentParser.Php. This issue affects MediaWiki: from * before 1.39.16, 1.43.6, 1.44.3, 1.45.1.
Remediation
References
Related Vulnerabilities
WordPress 'wp-login.php' HTTP Response Splitting Vulnerability (1.2)
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-0113)
OpenSSL Out-of-bounds Write Vulnerability (CVE-2022-2274)
WordPress Plugin SEO Ultimate Cross-Site Scripting (7.6.5.2)
WordPress Plugin Data Tables Generator by Supsystic Cross-Site Scripting (1.10.19)