Description

Cross-site scripting (XSS) vulnerability in MediaWiki before 1.5.8 and 1.4.15 allows remote attackers to inject arbitrary web script or HTML via crafted encoded links.

Remediation

References

CVE-2006-1498

Related Vulnerabilities

PHP Improper Input Validation Vulnerability (CVE-2011-0752)

Oracle HTTP Server Other Vulnerability (CVE-2004-2115)

MySQL CVE-2017-10311 Vulnerability (CVE-2017-10311)

Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2017-1000353)

WordPress Plugin WP Database Backup Cross-Site Request Forgery (4.3.5)

Severity

Medium

Classification

CVE-2006-1498

Tags

Missing Update Known Vulnerabilities