Description

Cross-site scripting (XSS) vulnerability in 'raw' page output mode for MediaWiki 1.3.4 and earlier allows remote attackers to inject arbitrary web script or HTML.

Remediation

References

CVE-2004-2152

Related Vulnerabilities

Oracle JRE CVE-2017-10349 Vulnerability (CVE-2017-10349)

WordPress Plugin April's Super Functions Pack Cross-Site Scripting (1.4.7)

WordPress Plugin Advanced Custom Fields (ACF) Cross-Site Scripting (5.8.11)

phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-6628)

WordPress Plugin wp-easybooking Cross-Site Scripting (1.0.3)

Severity

Medium

Classification

CVE-2004-2152

Tags

Missing Update Known Vulnerabilities