Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2021-39186
HistorySep 01, 2021 - 9:15 p.m.

CVE-2021-39186

2021-09-0121:15:07
Google
osv.dev
5
mediawiki
globalnewfiles
stored xss

AI Score

5.7

Confidence

High

EPSS

0.001

Percentile

41.3%

JSON

GlobalNewFiles is a MediaWiki extension maintained by Miraheze. Prior to commit number cee254e1b158cdb0ddbea716b1d3edc31fa4fb5d, the username column of the GlobalNewFiles special page is vulnerable to a stored XSS. Commit number cee254e1b158cdb0ddbea716b1d3edc31fa4fb5d contains a patch. As a workaround, one may disallow <,> (or other characters required to insert html/js) from being used in account names so an XSS is not possible.

Related

prion 1
cvelist 1
nvd 1
cve 1
prion
prion
Cross site scripting
2021-09-01 21:15:00
cvelist
cvelist
CVE-2021-39186 Improper Input Validation in GlobalNewFiles
2021-09-01 20:35:12
nvd
nvd
CVE-2021-39186
2021-09-01 21:15:07
cve
cve
CVE-2021-39186
2021-09-01 21:15:07

AI Score

5.7

Confidence

High

EPSS

0.001

Percentile

41.3%

JSON
Related for OSV:CVE-2021-39186
prion1cvelist1nvd1cve1