Description

Cross-site scripting (XSS) vulnerability in MediaWiki 1.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the page move template.

Remediation

References

CVE-2005-2396

Related Vulnerabilities

Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3665)

XWiki Improper Encoding or Escaping of Output Vulnerability (CVE-2022-41934)

WordPress Plugin ProfileGrid-User Profiles, Groups and Communities Cross-Site Scripting (2.6.6)

Drupal Core 5.x Cross-Site Scripting (5.0 - 5.17)

Python CVE-2020-27619 Vulnerability (CVE-2020-27619)

Severity

Medium

Classification

CVE-2005-2396

Tags

Missing Update Known Vulnerabilities