Lucene search
MitreCVELIST:CVE-2021-30458HistoryApr 09, 2021 - 6:06 a.m.
CVE-2021-30458
2021-04-0906:06:04
mitre
www.cve.org
9
wikimedia parsoid
version 0.11.1
version 0.12.x
sanitization
xss
An issue was discovered in Wikimedia Parsoid before 0.11.1 and 0.12.x before 0.12.2. An attacker can send crafted wikitext that Utils/WTUtils.php will transform by using a <meta> tag, bypassing sanitization steps, and potentially allowing for XSS.
Related
ubuntucve
ubuntucve
CVE-2021-30458
2021-04-09 00:00:00
friendsofphp
friendsofphp
Parsoid comment fostering allows for inserting mostly arbitrary <meta> tags
2021-04-08 05:36:00
Parsoid comment fostering allows for inserting mostly arbitrary <meta> tags
2021-04-08 05:36:00
nvd
nvd
CVE-2021-30458
2021-04-09 07:15:16
prion
prion
Cross site scripting
2021-04-09 07:15:00
github
github
Wikimedia Parsoid vulnerable to Cross-site Scripting (XSS)
2022-05-24 17:47:02
cve
cve
CVE-2021-30458
2021-04-09 07:15:16
osv
osv
CVE-2021-30458
2021-04-09 07:15:16
veracode
veracode
Cross-site Scripting (XSS)
2021-04-10 04:38:34
debiancve
debiancve
CVE-2021-30458
2021-04-09 07:15:16
gentoo
gentoo
MediaWiki: Multiple vulnerabilities
2021-07-17 00:00:00
nessus
nessus
GLSA-202107-40 : MediaWiki: Multiple vulnerabilities
2022-01-24 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package mediawiki version 1.35.2-alt1
2021-04-24 00:00:00