Description
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.4.x before 1.4.6 and 1.5 before 1.5beta3 allows remote attackers to inject arbitrary web script or HTML via a parameter in the page move template, a different vulnerability than CVE-2005-1888.
Remediation
References
Related Vulnerabilities
WordPress Plugin Google Map Backdoor (1.4)
WordPress 3.7.x Cross-Domain Flash Injection Vulnerability (3.7 - 3.7.24)
WordPress Plugin Simple Download Monitor Cross-Site Scripting (3.5.3)
Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-7861)
Oracle Database Server CVE-2018-3004 Vulnerability (CVE-2018-3004)