Description
Cross-site scripting (XSS) vulnerability in MediaWiki 1.6.0 up to versions before 1.6.7 allows remote attackers to inject arbitrary HTML and web script via the edit form.
Remediation
References
Related Vulnerabilities
WordPress Plugin Html5 Audio Player-Audio Player for WordPress Cross-Site Scripting (2.1.2)
WordPress Plugin MediaPress Security Bypass (1.1.9)
WordPress Plugin is_human() 'type' Parameter Remote Command Injection (1.4.2)
MySQL Insufficiently Protected Credentials Vulnerability (CVE-2012-5627)
WordPress Plugin Parallax Scroll Cross-Site Scripting (2.0.1)