Lucene search
PRIOn knowledge basePRION:CVE-2021-30458HistoryApr 09, 2021 - 7:15 a.m.
Cross site scripting
2021-04-0907:15:00
PRIOn knowledge base
www.prio-n.com
9
An issue was discovered in Wikimedia Parsoid before 0.11.1 and 0.12.x before 0.12.2. An attacker can send crafted wikitext that Utils/WTUtils.php will transform by using a <meta> tag, bypassing sanitization steps, and potentially allowing for XSS.
Related
ubuntucve
ubuntucve
CVE-2021-30458
2021-04-09 00:00:00
cvelist
cvelist
CVE-2021-30458
2021-04-09 06:06:04
veracode
veracode
Cross-site Scripting (XSS)
2021-04-10 04:38:34
osv
osv
CVE-2021-30458
2021-04-09 07:15:16
debiancve
debiancve
CVE-2021-30458
2021-04-09 07:15:16
nvd
nvd
CVE-2021-30458
2021-04-09 07:15:16
friendsofphp
friendsofphp
Parsoid comment fostering allows for inserting mostly arbitrary <meta> tags
2021-04-08 05:36:00
Parsoid comment fostering allows for inserting mostly arbitrary <meta> tags
2021-04-08 05:36:00
github
github
Wikimedia Parsoid vulnerable to Cross-site Scripting (XSS)
2022-05-24 17:47:02
cve
cve
CVE-2021-30458
2021-04-09 07:15:16
nessus
nessus
GLSA-202107-40 : MediaWiki: Multiple vulnerabilities
2022-01-24 00:00:00
gentoo
gentoo
MediaWiki: Multiple vulnerabilities
2021-07-17 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package mediawiki version 1.35.2-alt1
2021-04-24 00:00:00