Description

Cross-site scripting (XSS) vulnerability in 'raw' page output mode for MediaWiki 1.3.4 and earlier allows remote attackers to inject arbitrary web script or HTML.

Remediation

References

CVE-2004-2152

Related Vulnerabilities

WordPress Plugin Subscribe2 Unspecified Vulnerability (10.20.5)

WordPress Plugin PhastPress Open Redirect (1.110)

OpenSSL Resource Management Errors Vulnerability (CVE-2016-6308)

MySQL CVE-2020-2580 Vulnerability (CVE-2020-2580)

WordPress Plugin Mang Board WP Unspecified Vulnerability (2.0.3)

Severity

Medium

Classification

CVE-2004-2152

Tags

Missing Update Known Vulnerabilities