Lucene search
China National Vulnerability DatabaseCNVD-2022-08321HistoryJan 05, 2022 - 12:00 a.m.
MediaWiki Cross-Site Scripting Vulnerability (CNVD-2022-08321)
2022-01-0500:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
mediawiki
cross-site scripting
vulnerability
cnvd-2022-08321
web-based
knowledge management
content management
attackers
EPSS
0.001
Percentile
38.4%
MediaWiki is a free and free-to-use web-based wiki engine from the US-based MediaWiki Foundation. The product can be used to deploy internal knowledge management and content management systems. A cross-site scripting vulnerability exists in MediaWiki 1.37 and earlier versions. The vulnerability stems from the fact that the action field is not fully escaped and filtered for user input, which allows attackers to conduct cross-site scripting attacks through this vulnerability.
Related
prion
prion
Design/Logic Flaw
2021-12-24 02:15:00
redhatcve
redhatcve
CVE-2021-45473
2021-12-29 17:20:35
nvd
nvd
CVE-2021-45473
2021-12-24 02:15:07
ubuntucve
ubuntucve
CVE-2021-45473
2021-12-24 00:00:00
osv
osv
BIT-mediawiki-2021-45473
2024-03-06 11:08:41
CVE-2021-45473
2021-12-24 02:15:07
cvelist
cvelist
CVE-2021-45473
2021-12-24 01:03:46
cve
cve
CVE-2021-45473
2021-12-24 02:15:07
fedora
fedora
[SECURITY] Fedora 35 Update: mediawiki-1.36.3-1.fc35
2022-01-08 01:19:42
openvas
openvas
Fedora: Security Advisory for mediawiki (FEDORA-2021-bef1126908)
2022-01-08 00:00:00
MediaWiki <= 1.37 Multiple Vulnerabilities - Linux
2022-06-17 00:00:00
MediaWiki <= 1.37 Multiple Vulnerabilities - Windows
2022-06-17 00:00:00