Description
Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw allowing to evade SVG filter using default attribute values in DTD declaration.
Remediation
References
Related Vulnerabilities
Plone CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33926)
Magento CVE-2019-8230 Vulnerability (CVE-2019-8230)
PHP Other Vulnerability (CVE-2006-4481)
WordPress Plugin WP Google Maps Multiple Cross-Site Scripting Vulnerabilities (8.1.12)
WordPress Plugin Product Addons & Fields for WooCommerce Unspecified Vulnerability (13.7)