Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Special.Apisandbox/ApiSandboxLayout.Js. This issue affects MediaWiki: from * before 1.44.3, 1.45.1.
Remediation
References
Related Vulnerabilities
WordPress Plugin Syndication Links Cross-Site Scripting (1.0.2)
IBM WebSEAL Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2020-4699)
WordPress Plugin Efence Multiple Cross-Site Scripting Vulnerabilities (1.3.2)
Ruby on Rails Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-8162)
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-20401)